httpx icon indicating copy to clipboard operation
httpx copied to clipboard

Published 20 hours ago verified publisher icon projectdiscovery

Scan host list to see which one detects sni (netfree)

Open demianrey opened this issue 3 years ago • 6 comments

Hi, Well, that there is an option where in a list of Hosts it shows which one supports sni, this is used for netfree in mobile operators, here is an example of the code that can help you, credits to the creator https://github.com/aztecrabbit/bugscanner-go/blob/master/cmd/scan_sni.go

demianrey avatar Jun 13 '22 03:06 demianrey

@demianrey could you elaborate more about this feature? what needs to be achieved and its use cases as its unclear based on shared information.

ehsandeep avatar Jul 02 '22 11:07 ehsandeep

@demianrey could you elaborate more about this feature? what needs to be achieved and its use cases as its unclear based on shared information.

Ok I'll try to explain, this is used to find Hosts that give sni connection in netfree, so it should be used when you don't have data in your cellular company, as Host of social networks if the plan or package has unlimited social networks or Host of the company's portals, etc. So what is needed? A list of possible Hosts, and that from that list only show those that give sni connection... I don't know if that's enough or if you want something more technical, the technical stuff is in the file I sent. Regards

demianrey avatar Jul 02 '22 13:07 demianrey

Example: IMG_20220702_112851

demianrey avatar Jul 02 '22 16:07 demianrey

@demianrey Thanks for opening this issue. httpx already support the SNI tls extension automatically by using the Host header name if available or a custom value provided by the user, but it's specific for HTTP protocol. Unless I'm mistaken, tlsx might be what you need with the SNI bruteforce functionality implemented at https://github.com/projectdiscovery/tlsx/pull/46

Mzack9999 avatar Jul 11 '22 23:07 Mzack9999

@demianrey Thanks for opening this issue. httpx already support the SNI tls extension automatically by using the Host header name if available or a custom value provided by the user, but it's specific for HTTP protocol. Unless I'm mistaken, tlsx might be what you need with the SNI bruteforce functionality implemented at projectdiscovery/tlsx#46

Thanks for your answer friend, I tried, but I couldn't find the command that does what I need... could you tell me how it is, please

demianrey avatar Jul 13 '22 00:07 demianrey

  • httpx: echo x.x.x.x | httpx -sni hostname
  • tlsx: echo google.com | ./tlsx -vc -sni sni_list.txt -tps -silent

Mzack9999 avatar Aug 01 '22 05:08 Mzack9999