drakvuf-sandbox icon indicating copy to clipboard operation
drakvuf-sandbox copied to clipboard

Published 20 hours ago verified publisher icon CERT-Polska

Routing HTTPS over proxy

Open kaboreka opened this issue 3 years ago • 1 comments

Hi How can we route vm https traffic over proxy? I tried with mitmproxy (https://docs.mitmproxy.org/stable/howto-transparent-vms/) but i cant route. Is there any plan to support https inspection?

kaboreka avatar Aug 19 '21 18:08 kaboreka

Hi, If your goal is to decrypt HTTPS traffic, we've already got support for that via tlsmon plugin that dumps crypto keys in Wireshark format. Live request interception/modification during analysis is currently of of scope.

However if you'd like to experiment with it, you should be able to do this by adding appropriate iptables rules, similarly to https://docs.mitmproxy.org/stable/howto-transparent-vms/#3-redirect-traffic-to-mitmproxy

chivay avatar Aug 20 '21 12:08 chivay