https://github.com/lmangani/node_ssl_logger
Decrypt and log process SSL traffic via Frida Injection :closed_lock_with_key:
https://github.com/lmangani/node_ssl_logger
decode decrypt decrypts dump frida injection log mitm nodejs pid process process-ssl-traffic slogger ssl ssldump
Last synced: 7 months ago
JSON representation
Decrypt and log process SSL traffic via Frida Injection :closed_lock_with_key:
- Host: GitHub
- URL: https://github.com/lmangani/node_ssl_logger
- Owner: lmangani
- License: apache-2.0
- Created: 2017-07-17T17:46:19.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2022-02-25T11:12:14.000Z (almost 4 years ago)
- Last Synced: 2025-06-01T21:47:43.792Z (9 months ago)
- Topics: decode, decrypt, decrypts, dump, frida, injection, log, mitm, nodejs, pid, process, process-ssl-traffic, slogger, ssl, ssldump
- Language: JavaScript
- Homepage: http://qxip.net
- Size: 45.9 KB
- Stars: 20
- Watchers: 4
- Forks: 4
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# node_ssl_logger
Decrypts and logs a process's SSL traffic via Frida Code Injection
The functionality offered by **node_ssl_logger** is intended to mimic Google's [ssl_logger](https://github.com/google/ssl_logger) and [Echo Mirage](http://resources.infosecinstitute.com/echo-mirage-walkthrough/)'s SSL logging functionality on NodeJS/Linux
Status:
* Experimental! Please use the original! (unless you hate python)
## Requirements
This program uses the frida framework to perform code injection.
Frida can be installed as follows: ```sudo pip install frida```
## Installation
```
npm install
```
## Usage
```
nodejs node_ssl_logger.js -p
```
#### Example
```
# Make a local pipe for input to our openssl client
$ mkfifo pipe
# Create our openssl client, which will receive input from our pipe
$ openssl s_client -ign_eof -connect example.org:443 > /dev/null 2> /dev/null < pipe &
[1] 98954
# Begin writing the request to our pipe
$ printf "GET / HTTP/1.0\nHost:example.org\n" > pipe
# Begin logging the SSL traffic for our openssl client process
$ nodejs node_ssl_logger.js -p openssl &
[2] 98962
Press Ctrl+C to stop logging.
# Write the final line-feed to our pipe to complete the HTTP request
$ printf "\n" > pipe
# Check the output for magic!
```
## Todo
* pcap export
* plenty other things
#### Credits
Script and Examples based on Jason Geffner's python [ssl_logger](https://github.com/google/ssl_logger)