Sniffer for encrypted traffic on darwin-based platforms

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for netanelc305 from gravatar.com netanelc305

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+)
  • Author: netanelc305
  • Maintainer: netanelc305
  • Tags ios, jailbreak, ssl, sniffer, tls, cli, automation, darwin, osx, macos
  • Requires: Python >=3.8
Classifiers

Project description

Description

Utility for sniffing SSL/TLS encrypted traffic on a darwin-based platforms.

CFNetwork.framework contains a debug/verbosity global, enforcing a dump of every packet transferred through it, to be logged into device syslog in plaintext form. In order to have a nicer view with clean control flow of this traffic, we attach each such packet appropriate TCP flags and write it back into a PCAP file.

This allows us to later dissect this traffic using popular and convenient tools (e.g. Wireshark 🦈).

On iOS, this will require a jailbroken iOS device.

Installation

python3 -m pip install -U darwin-ssl-sniffer

Usage

Local macOS machine

Simply execute:

# output file can be given using the -o option (traffic.pcapng by default)
python3 -m darwin_ssl_sniffer sniff

Jailbroken iOS device

  • Download and install rpcserver on a jailbroken device.
  • Execute: 
    python3 -m darwin_ssl_sniffer mobile setup -p 5910
    This step should be performed only once on the device. The first time will require a device reboot (you will be prompted to if this is indeed the first time).
  • Execute: 
    # output file can be given using the -o option (traffic.pcapng by default)
python3 -m darwin_ssl_sniffer mobile sniff

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for netanelc305 from gravatar.com netanelc305

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+)
  • Author: netanelc305
  • Maintainer: netanelc305
  • Tags ios, jailbreak, ssl, sniffer, tls, cli, automation, darwin, osx, macos
  • Requires: Python >=3.8
Classifiers

Release history Release notifications | RSS feed

This version

0.0.4

0.0.3

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

darwin-ssl-sniffer-0.0.4.tar.gz (11.6 kB view details)

Uploaded Source

Built Distribution

darwin_ssl_sniffer-0.0.4-py3-none-any.whl (8.7 kB view details)

Uploaded Python 3

File details

Details for the file darwin-ssl-sniffer-0.0.4.tar.gz.

File metadata

  • Download URL: darwin-ssl-sniffer-0.0.4.tar.gz
  • Upload date:
  • Size: 11.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.12.1

File hashes

Hashes for darwin-ssl-sniffer-0.0.4.tar.gz
Algorithm Hash digest
SHA256 0b7994f4d45be1fc38c5059cdc41a0ae7e0c055fdc552e652d2c17fe0460b7ea
MD5 6d3d46c1391225681eb18767362d02f1
BLAKE2b-256 3227c72e32267c8e3c403eaf623ff73e1973d80ea55c3a10d4480de051cc7489

See more details on using hashes here.

File details

Details for the file darwin_ssl_sniffer-0.0.4-py3-none-any.whl.

File metadata

File hashes

Hashes for darwin_ssl_sniffer-0.0.4-py3-none-any.whl
Algorithm Hash digest
SHA256 0d5d218b5b035707aebd0d450bd58452b89503bd6fd3cb752bba0e8e0f49a5c3
MD5 f071998bd02c55f88e9eb145f3632914
BLAKE2b-256 402c51ced78d9556d358dcfecb955d05e556bd5e7393e34fae0f41325cc955e9

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page