PHzildjianfritzie
Honorary Poster
ALL ABOUT HTTP INJECTOR
(FOR YOU TO UNDERSTAND IT CLEARLY GO TO UR HTTP INJECTOR APP THEN PRESS HELP & YOU CAN SEETHERE ARE GUIDE & MANUAL TIPS)
I JUST COPY PASTE IT HERE
& IT LOOKS MESSY
HTTP Injector
Mobile proxy server with the ability to modify requests and access blocked websites behind firewall, etc.
Glossary
Payload Keyword
Inject Method
Troubleshoot
VPN
GlossaryBefore we get started, let's understand the meaning#Word[Main]PayloadHTTP header data payload that will be injectedRemote ProxyRemote HTTP proxy (ex: Squid proxy/APN proxy)Debug ModeShow your data that you send/received in app log (Please turn off during normal usage)Battery SaverDisable Wakelock that prevent your CPU from sleepingGoogle DNSUse Google DNS to bypass blocked websites and prevent your ISP from knowing what websites you're visiting.Start SSHStart SSH connection upon starting injection.[SSH/Setting]Connect ModeThere's two modes, iptables (root) which will require root and it only tunnel port 80 and 443 traffic.
VPN Service mode is for Android 4.0+ and will tunnel all traffic to your server. (Please use root mode, if you are having issue with VPN Service mode)SSHSecure Shell is a encrypted network protocol for initiating text-based shell sessions on remote machines in a secure way.SSH HostSSH IP/hostnameSSH PortThe port for your SSH server, normally will be port 22 (Normally public squid/http proxy will block port 22)UsernameSSH usernamePasswordSSH passwordData CompressionCompress data packet using zlib.Upstream ProxyHTTP Injector currently is using port 8989 (fixed), you have to enable and set 127.0.0.1:8989 for the SSH to connect to HTTP Injector local proxy server.Payload Keyword
Using the below keyword, the app willautomatically replace with relavent data upon injection, you don't need to replace the word inside the square bracket unless you know what you are doing.
Supported keyword: [host] [port] [host_port] [protocol] [netData] [cr] [lf] [crlf] [lfcr]
Assume that 188.100.100.123 is your SSH Server IP and 22 is your SSH port
KeywordAuto Replaced[host]188.100.100.123Destination host[port]22Destination port[host_port]188.100.100.123:22Destination host and port, seperated by colon :[ssh]188.100.100.123:22SSH server ip and port that you set at settings[protocol]HTTP\1.0 or HTTP\1.1HTTP protocol version[netData]CONNECT [host_port] [protocol]Short form of three keywords[cr]\rCarriage Return, U+000D[lf]\nLine Feed, U+000A[crlf]\r\nCR (U+000D) followed by LF (U+000A)[lfcr]\n\rLF (U+000A) followed by CR (U+000D)[crlf][crlf]\r\n\r\nTo indicate the end of HTTP headerInject Method
Notice: In this example we are using "CONNECT" & "HEAD" request method and domain.com as the host you want to spoof, you might need to use GET/POST/DELETE/CONNECT/HEAD...
Make sure your remote HTTP proxyallow the request method else you will get 403 error.
Tips: Use "Payload Generator" inside HTTP Injector app instead of writing manually. Normally we just need to use "CONNECT" request method
MethodPayloadNormalCONNECT [host_port] [protocol][crlf]Host: domain.com[crlf][crlf]Front InjectGET You do not have permission to view the full content of this post. Log in or register now. HTTP/1.1[crlf]Host: domain.com[crlf][crlf]CONNECT [host_port] [protocol][crlf][crlf]Back InjectCONNECT [host_port] HTTP/1.1[crlf][crlf]GET You do not have permission to view the full content of this post. Log in or register now. [protocol][crlf]Host: domain.com[crlf][crlf]Front QueryCONNECT domain.com@[host_port][crlf]GET You do not have permission to view the full content of this post. Log in or register now. [protocol][crlf]Host: domain.com[crlf][crlf]Back QueryCONNECT [host_port]@domain.com[crlf]GET You do not have permission to view the full content of this post. Log in or register now. [protocol][crlf]Host: domain.com[crlf][crlf]Troubleshoot302 Error code - If you are getting 302 HTTP header code that means your ISP is redirecting your request to their captive portal page. Normally ISP blacklisted your remote proxy or the HTTP Payload400 Error code - This indicate that your payload is invalid and can't be understand by remote proxyConnection timeout - It could be that your network connection is slow or the remote proxy is slowVPNPsiphon - To use with psiphon (uncheck Start SSH), you can't use [host_port] in your payload, you need to get the SSH IP of psipon and hardcode it (not tested)OpenVPN - Disable "Start SSH" and use HTTP Injector with your OpenVPN if you don't have SSH server.
You have to add http-proxy 127.0.0.1 8989 and bypass routeroute replace_to_your_remote_proxy_ip 255.255.255.255 net_gateway(change "replace_to_your_remote_proxy_ip" to IP) to your VPN config.
(FOR YOU TO UNDERSTAND IT CLEARLY GO TO UR HTTP INJECTOR APP THEN PRESS HELP & YOU CAN SEETHERE ARE GUIDE & MANUAL TIPS)
I JUST COPY PASTE IT HERE
& IT LOOKS MESSY
HTTP Injector
Mobile proxy server with the ability to modify requests and access blocked websites behind firewall, etc.
Glossary
Payload Keyword
Inject Method
Troubleshoot
VPN
GlossaryBefore we get started, let's understand the meaning#Word[Main]PayloadHTTP header data payload that will be injectedRemote ProxyRemote HTTP proxy (ex: Squid proxy/APN proxy)Debug ModeShow your data that you send/received in app log (Please turn off during normal usage)Battery SaverDisable Wakelock that prevent your CPU from sleepingGoogle DNSUse Google DNS to bypass blocked websites and prevent your ISP from knowing what websites you're visiting.Start SSHStart SSH connection upon starting injection.[SSH/Setting]Connect ModeThere's two modes, iptables (root) which will require root and it only tunnel port 80 and 443 traffic.
VPN Service mode is for Android 4.0+ and will tunnel all traffic to your server. (Please use root mode, if you are having issue with VPN Service mode)SSHSecure Shell is a encrypted network protocol for initiating text-based shell sessions on remote machines in a secure way.SSH HostSSH IP/hostnameSSH PortThe port for your SSH server, normally will be port 22 (Normally public squid/http proxy will block port 22)UsernameSSH usernamePasswordSSH passwordData CompressionCompress data packet using zlib.Upstream ProxyHTTP Injector currently is using port 8989 (fixed), you have to enable and set 127.0.0.1:8989 for the SSH to connect to HTTP Injector local proxy server.Payload Keyword
Using the below keyword, the app willautomatically replace with relavent data upon injection, you don't need to replace the word inside the square bracket unless you know what you are doing.
Supported keyword: [host] [port] [host_port] [protocol] [netData] [cr] [lf] [crlf] [lfcr]
Assume that 188.100.100.123 is your SSH Server IP and 22 is your SSH port
KeywordAuto Replaced[host]188.100.100.123Destination host[port]22Destination port[host_port]188.100.100.123:22Destination host and port, seperated by colon :[ssh]188.100.100.123:22SSH server ip and port that you set at settings[protocol]HTTP\1.0 or HTTP\1.1HTTP protocol version[netData]CONNECT [host_port] [protocol]Short form of three keywords[cr]\rCarriage Return, U+000D[lf]\nLine Feed, U+000A[crlf]\r\nCR (U+000D) followed by LF (U+000A)[lfcr]\n\rLF (U+000A) followed by CR (U+000D)[crlf][crlf]\r\n\r\nTo indicate the end of HTTP headerInject Method
Notice: In this example we are using "CONNECT" & "HEAD" request method and domain.com as the host you want to spoof, you might need to use GET/POST/DELETE/CONNECT/HEAD...
Make sure your remote HTTP proxyallow the request method else you will get 403 error.
Tips: Use "Payload Generator" inside HTTP Injector app instead of writing manually. Normally we just need to use "CONNECT" request method
MethodPayloadNormalCONNECT [host_port] [protocol][crlf]Host: domain.com[crlf][crlf]Front InjectGET You do not have permission to view the full content of this post. Log in or register now. HTTP/1.1[crlf]Host: domain.com[crlf][crlf]CONNECT [host_port] [protocol][crlf][crlf]Back InjectCONNECT [host_port] HTTP/1.1[crlf][crlf]GET You do not have permission to view the full content of this post. Log in or register now. [protocol][crlf]Host: domain.com[crlf][crlf]Front QueryCONNECT domain.com@[host_port][crlf]GET You do not have permission to view the full content of this post. Log in or register now. [protocol][crlf]Host: domain.com[crlf][crlf]Back QueryCONNECT [host_port]@domain.com[crlf]GET You do not have permission to view the full content of this post. Log in or register now. [protocol][crlf]Host: domain.com[crlf][crlf]Troubleshoot302 Error code - If you are getting 302 HTTP header code that means your ISP is redirecting your request to their captive portal page. Normally ISP blacklisted your remote proxy or the HTTP Payload400 Error code - This indicate that your payload is invalid and can't be understand by remote proxyConnection timeout - It could be that your network connection is slow or the remote proxy is slowVPNPsiphon - To use with psiphon (uncheck Start SSH), you can't use [host_port] in your payload, you need to get the SSH IP of psipon and hardcode it (not tested)OpenVPN - Disable "Start SSH" and use HTTP Injector with your OpenVPN if you don't have SSH server.
You have to add http-proxy 127.0.0.1 8989 and bypass routeroute replace_to_your_remote_proxy_ip 255.255.255.255 net_gateway(change "replace_to_your_remote_proxy_ip" to IP) to your VPN config.
:cat: