简体繁体中英

RaspberryPi as AccessPoint with 2 Wifi usb running MITMProxy and ParosProxy

原文 2015-10-24 20:33:23 2 1 raspberry-pi/ reverse-engineering/ packet-sniffers/ mitmproxy/ parosproxy

I was trying to study the HTTP(s) requests/response that the apps from my phone are sending so this is what I went ahead and created.

I turned my Raspberry Pi as an access point with 2 wifi usb dongles. One for my phone to connect to the "TEST" network and the second connected to the internet. Everything works fine and my phone is able to access internet via my RPi.

Now I setup MITMproxy (in transparent mode) so that I can sniff the traffic to-from from my phone apps. I installed the mitmproxy certificate on the phone and the traffic shows up fine on the mitmproxy console.

Final step - To make the web traffic data analysis part easier I found on the net that Paros Proxy might be able to help (show the traffic from mitmproxy) in a more readable way. - THIS IS NOT HAPPENING

I am assuming there is some setup required for ParosProxy so that it can be linked to mimtProxy / network interfaces which I am not able to achieve. Can any one please help with this?

ParosProxy dashboard doesnt show any traffic. As far as the settings (Tool->Options) the default settings are there ie for local proxy (host = localhost and port = 8080). I couldnt find much documentation about ParosProxy on the web. My network interfaces on the RPi is as follows : wlan0 (connected to internet) - DHCP wlan1 (Access Point to which the phone apps connect to) - static IP (gateway 192.168.10.1)

Just in case there is some other tool that could help me achieve the same (a GUI/better dashboard to analyse mitmproxy traffic in real time) I am pretty open for it.

1 answers

Yes there is a better option: OWASP ZAP https://www.owasp.org/index.php/ZAP :) It was forked from Paros ~ 5 years ago, is very actively maintained and pretty well documented.

See https://github.com/zaproxy/zaproxy for links to the online user guide, FAQ user and developer groups.

FYI we have info on how to get ZAP runnin on a Pi: https://github.com/zaproxy/zaproxy/wiki/zappi but that doesnt include setting up wiki access - it would be great if we could update that page with the necessary steps :)

Simon (ZAP project lead)

Usb WiFi Dongle RaspberryPi

Secure PHP code in RaspberryPi/USB

SSH Raspberrypi4 on usb connection

pyfluidsynth running on RaspberryPi errors

python script for RaspberryPi to connect wifi automatically

Adaptator for RaspberryPi: RJ45 to USB

Running .NET6 SwaggerApi on a raspberrypi

RaspberryPi MQTT Broker access via Wifi and Ethernet without interference

Get IP address on RaspberryPi 4 running Yocto image

Unsupported format in function medianBlur for USB Camera (Python/RaspberryPI/OpenCV)

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Usb WiFi Dongle RaspberryPi Secure PHP code in RaspberryPi/USB SSH Raspberrypi4 on usb connection pyfluidsynth running on RaspberryPi errors python script for RaspberryPi to connect wifi automatically Adaptator for RaspberryPi: RJ45 to USB Running .NET6 SwaggerApi on a raspberrypi RaspberryPi MQTT Broker access via Wifi and Ethernet without interference Get IP address on RaspberryPi 4 running Yocto image Unsupported format in function medianBlur for USB Camera (Python/RaspberryPI/OpenCV)

Related Tags

RaspberryPi as AccessPoint with 2 Wifi usb running MITMProxy and ParosProxy

Question

1 answers

solution1 0 2015-10-26 07:33:57

solution1
0 2015-10-26 07:33:57