https://github.com/usamikinoko/kankan

轻量级内网穿透工具
https://github.com/usamikinoko/kankan

golang network penetration-testing-tools

Last synced: 4 months ago
JSON representation

轻量级内网穿透工具

• Host: GitHub
• URL: https://github.com/usamikinoko/kankan
• Owner: usamikinoko
• License: mit
• Created: 2025-02-07T06:42:40.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2025-02-07T10:20:33.000Z (over 1 year ago)
• Last Synced: 2025-02-28T18:32:02.494Z (over 1 year ago)
• Topics: golang, network, penetration-testing-tools
• Language: Go
• Homepage:
• Size: 24.4 KB
• Stars: 2
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# Kankan

[![Go Version](https://img.shields.io/badge/Go-1.23.5-blue.svg)](https://golang.org/doc/devel/release.html)

[![License](https://img.shields.io/badge/License-MIT-green.svg)](https://opensource.org/licenses/MIT)

Kankan is a lightweight and secure intranet penetration tool written in Go.

## Usage

### Server (Public Network)

```bash

# Basic usage

kankans.exe -bind 0.0.0.0 -port 8080 -proxy 8081 -key your-secret-key

# Advanced configuration

kankans.exe -bind 0.0.0.0 -port 8080 -proxy 8081 -key your-secret-key -max-conn 100 -timeout 30s -heartbeat 10s -buffer 4096

```

### Client (Internal Network)

```bash

# Basic usage - Expose local web service (TCP mode)

kankanc.exe -server your-server-ip -sport 8080 -local 127.0.0.1 -lport 80 -key your-secret-key

# UDP mode - Expose local UDP service

kankanc.exe -server your-server-ip -sport 8080 -local 127.0.0.1 -lport 53 -key your-secret-key -udp

# Advanced configuration

kankanc.exe -server your-server-ip -sport 8080 -local 127.0.0.1 -lport 80 -key your-secret-key -max-retry 5 -retry-delay 5s -buffer 8192

```

## Features

### Security

- AES-256 encryption with dynamic nonce for data protection

- SHA-256 based key derivation for secure key management

- Message authentication to prevent tampering

> Path: `/pkg/crypto/crypto.go`

```go

func NewCrypto(key string) (*Crypto, error) {

    h := sha256.New()

    h.Write([]byte(key))

    keyBytes := h.Sum(nil)

    block, err := aes.NewCipher(keyBytes)

    // ...

}

```

### Traffic Obfuscation

- HTTP/WebSocket protocol simulation

- Dynamic padding and jitter

- Common browser User-Agent rotation

- TLS-like traffic patterns

> Path: `/pkg/protocol/protocol.go`

```go

type ObfuscationConfig struct {

    EnableHTTP    bool

    EnableWSS     bool

    PaddingRange  [2]int

    JitterRange   time.Duration

    FragmentSize  int

    EnableTLSLike bool

    DynamicPort   bool

    PortRange     [2]int

}

```

### Performance

- Worker pool for efficient connection handling

- Buffer pool for memory optimization

- LZ4 compression for data transfer

> Path: `/kankans/main.go`

```go

type Server struct {

    workerPool  *WorkerPool

    bufferPool  sync.Pool

    metrics     *Metrics

    // ...

}

bufPool: sync.Pool{

    New: func() interface{} {

        return make([]byte, 0, 4096)

    },

}

```

### Protocol Support

- TCP proxy with automatic reconnection

- UDP proxy with session management

- Dynamic port allocation

> Path: `/kankans/main.go`

```go

type UDPSession struct {

    clientAddr *net.UDPAddr

    localConn  *net.UDPConn

    lastSeen   time.Time

    crypto     *crypto.Crypto

}

```

### Monitoring & Management

- Real-time metrics collection

- Connection and traffic statistics

- Automatic cleanup of inactive sessions

> Path: `/kankans/main.go`

```go

type Metrics struct {

    activeConnections int32

    totalConnections  uint64

    totalBytes        uint64

    totalPackets      uint64

    lastMinuteBytes   uint64

    lastMinutePackets uint64

    // ...

}

```

## How It Works

```mermaid

sequenceDiagram

    participant C as Client

    participant KC as KankanC

    participant KS as KankanS

    participant U as User

    C->>KC: Local Service

    KC->>KS: Encrypted Connection

    Note over KC,KS: Session Establishment
& Heartbeat

    U->>KS: Access Request

    KS->>KC: Forward Request

    KC->>C: Forward to Service

    C->>KC: Service Response

    KC->>KS: Encrypted Response

    KS->>U: Final Response

    Note over KC,KS: Continuous
Connection Monitor

```

The diagram above illustrates the basic workflow:

1. KankanC establishes an encrypted connection with KankanS

2. KankanC maintains the connection through heartbeat mechanism

3. When a user accesses KankanS, the request is forwarded to KankanC

4. KankanC forwards the request to the local service and returns the response

5. All data transmission between KankanC and KankanS is encrypted

## Command Line Options

### Server Options

- `-bind`: Bind address (default: "0.0.0.0")

- `-port`: Control server port (default: 8080)

- `-proxy`: Proxy server port (default: 8081)

- `-key`: Encryption key (required)

- `-max-conn`: Maximum connections (default: 1000)

- `-timeout`: Connection timeout (default: 30s)

- `-heartbeat`: Heartbeat interval (default: 10s)

- `-buffer`: Buffer size in bytes (default: 4096)

- `-cleanup`: Cleanup interval (default: 60s)

- `-log-level`: Log level (debug/info/warn/error, default: info)

- `-idle-timeout`: Idle connection timeout (default: 300s)

### Client Options

- `-server`: Remote server address (required)

- `-sport`: Remote server port (default: 8080)

- `-local`: Local service address (default: "127.0.0.1")

- `-lport`: Local service port (required)

- `-key`: Encryption key (required)

- `-udp`: Enable UDP mode for UDP service forwarding

- `-max-retry`: Maximum reconnection attempts (default: 3)

- `-retry-delay`: Delay between reconnection attempts (default: 3s)

- `-buffer`: Buffer size in bytes (default: 4096)