PyMultitor - Never Stop Even If Your IP Dropped.
Project description
Overview
Python Multi Threaded Tor Proxy,
Did you ever want to be at two different places at the same time?
When I asked myself this question, I actually started developing this solution in my mind.
While performing penetration tests there are often problems caused by security devices that block the "attacking" IP.
This really annoyed me, so I wrote a script to supply a solution for this problem.
With a large number of IP addresses performing the attacks, better results are guaranteed - especially when attempting attacks to bypass Web Application Firewalls, Brute-Force type attacks and many more.
[Blackhat Asia] https://www.blackhat.com/asia-17/arsenal.html#pymultitor
[Owasp-IL Presentation] https://www.owasp.org/images/3/3d/OWASPIL-2016-02-02_PyMultiTor_TomerZait.pdf
[DigitalWhisper Article (Hebrew)] http://www.digitalwhisper.co.il/files/Zines/0x2E/DW46-3-PyMultitor.pdf
Installation
Prerequisites
- Python 3.6+.
- mitmproxy (https://mitmproxy.com/).
- tor.
- On Ubuntu / Kali,
sudo apt install -y tor
- On Centos,
sudo yum install -y tor
- On Fedora,
sudo dnf install -y tor
- On Windows,
- download tor expert bundle: https://www.torproject.org/download/tor/
- insert tor to your path environment:
{tor-win32-*_path}\Tor
- if you don't know how remember tor.exe path and use
--tor-cmd
argument on pymultitor (for example:pymultitor --tor-cmd "c:\Pentest\Web\tor-win32-0.2.9.9\Tor\tor.exe"
)
- On MacOS,
brew install tor
- On Ubuntu / Kali,
From pip
pip3 install pymultitor
You may need to use sudo
, depending on your Python installation.
From Source
git clone https://github.com/realgam3/pymultitor.git
cd pymultitor
# Install python dependencies.
# Depending on your setup, one or both of these may require sudo.
pip3 install -r requirements.txt
python3 setup.py install
# Confirm that everything works
pymultitor --help
Bug reports on installation issues are welcome!
Usage
Basic Usage
- Run
pymultitor --on-string "Your IP Address Blocked"
. - On your script use proxy (
http://127.0.0.1:8080
).
When the stringYour IP Address Blocked
will present in the response content, you will exit from another IP address.
Command Line Flags
See --help
for the complete list, but in short:
Usage: pymultitor [-h] [-v] [-lh LISTEN_HOST] [-lp LISTEN_PORT] [-s] [-i] [-d]
[-p PROCESSES] [-c CMD] [--on-count ON_COUNT]
[--on-string ON_STRING] [--on-regex ON_REGEX] [--on-rst]
# When To Change IP Address
--on-count Change IP Every x Requests (Resources Also Counted).
--on-string Change IP When String Found On The Response Content.
--on-regex Change IP When Regex Found On The Response Content.
--on-rst Change IP When Connection Closed With TCP RST.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for PyMultitor-3.1.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 0cd4f042c74c9af82a450076cb5af5686e66016b058ebe1626e861e8da2d13cb |
|
MD5 | e2426e0bdd0e33d09925d5c82e4873e0 |
|
BLAKE2b-256 | d67dac702ee44a6ad3f7cdc59ff82aa0fb3fff4d5fdaf1fd605f99a7add3908c |