improve js rewriting functionality by not relying on js to get proxy and proxified URLs; direct injection from golang
This commit is contained in:
Kevin Pham
@@ -10,7 +10,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromBaiduSearch modifies the referrer header
|
||||
// pretending to be from a BaiduSearch
|
||||
func SpoofReferrerFromBaiduSearch(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromBaiduSearch() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
// https://www.baidu.com/link?url=5biIeDvUIihawf3Zbbysach2Xn4H3w3FzO6LZKgSs-B5Yt4M4RUFikokOk5zetf2&wd=&eqid=9da80d8208009b8480000706655d5ed6
|
||||
referrer := fmt.Sprintf("https://baidu.com/link?url=%s", generateRandomBaiduURL())
|
||||
|
||||
@@ -6,13 +6,14 @@ import (
|
||||
|
||||
// SpoofReferrerFromBingSearch modifies the referrer header
|
||||
// pretending to be from a bing search site
|
||||
func SpoofReferrerFromBingSearch(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromBingSearch() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://www.bing.com/"),
|
||||
SetRequestHeader("sec-fetch-site", "cross-site"),
|
||||
SetRequestHeader("sec-fetch-dest", "document"),
|
||||
SetRequestHeader("sec-fetch-mode", "navigate"),
|
||||
ModifyQueryParams("utm_source", "bing"),
|
||||
)
|
||||
return nil
|
||||
}
|
||||
|
||||
@@ -6,13 +6,14 @@ import (
|
||||
|
||||
// SpoofReferrerFromGoogleSearch modifies the referrer header
|
||||
// pretending to be from a google search site
|
||||
func SpoofReferrerFromGoogleSearch(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromGoogleSearch() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://www.google.com/"),
|
||||
SetRequestHeader("sec-fetch-site", "cross-site"),
|
||||
SetRequestHeader("sec-fetch-dest", "document"),
|
||||
SetRequestHeader("sec-fetch-mode", "navigate"),
|
||||
ModifyQueryParams("utm_source", "google"),
|
||||
)
|
||||
return nil
|
||||
}
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromLinkedInPost modifies the referrer header
|
||||
// pretending to be from a linkedin post
|
||||
func SpoofReferrerFromLinkedInPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromLinkedInPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://www.linkedin.com/"),
|
||||
|
||||
@@ -7,7 +7,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromNaverSearch modifies the referrer header
|
||||
// pretending to be from a Naver search (popular in South Korea)
|
||||
func SpoofReferrerFromNaverSearch(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromNaverSearch() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
referrer := fmt.Sprintf(
|
||||
"https://search.naver.com/search.naver?where=nexearch&sm=top_hty&fbm=0&ie=utf8&query=%s",
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromPinterestPost modifies the referrer header
|
||||
// pretending to be from a pinterest post
|
||||
func SpoofReferrerFromPinterestPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromPinterestPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://www.pinterest.com/"),
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromQQPost modifies the referrer header
|
||||
// pretending to be from a QQ post (popular social media in China)
|
||||
func SpoofReferrerFromQQPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromQQPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://new.qq.com/'"),
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromRedditPost modifies the referrer header
|
||||
// pretending to be from a reddit post
|
||||
func SpoofReferrerFromRedditPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromRedditPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://www.reddit.com/"),
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromTumblrPost modifies the referrer header
|
||||
// pretending to be from a tumblr post
|
||||
func SpoofReferrerFromTumblrPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromTumblrPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://www.tumblr.com/"),
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromTwitterPost modifies the referrer header
|
||||
// pretending to be from a twitter post
|
||||
func SpoofReferrerFromTwitterPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromTwitterPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://t.co/"),
|
||||
|
||||
@@ -6,7 +6,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromVkontaktePost modifies the referrer header
|
||||
// pretending to be from a vkontakte post (popular in Russia)
|
||||
func SpoofReferrerFromVkontaktePost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromVkontaktePost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
chain.AddRequestModifications(
|
||||
SpoofReferrer("https://away.vk.com/"),
|
||||
|
||||
@@ -8,7 +8,7 @@ import (
|
||||
|
||||
// SpoofReferrerFromWeiboPost modifies the referrer header
|
||||
// pretending to be from a Weibo post (popular in China)
|
||||
func SpoofReferrerFromWeiboPost(url string) proxychain.RequestModification {
|
||||
func SpoofReferrerFromWeiboPost() proxychain.RequestModification {
|
||||
return func(chain *proxychain.ProxyChain) error {
|
||||
referrer := fmt.Sprintf("http://weibo.com/u/%d", rand.Intn(90001))
|
||||
chain.AddRequestModifications(
|
||||
|
||||
@@ -1,167 +0,0 @@
|
||||
// Overrides the global fetch and XMLHttpRequest open methods to modify the request URLs.
|
||||
// Also overrides the attribute setter prototype to modify the request URLs
|
||||
// fetch("/relative_script.js") -> fetch("http://localhost:8080/relative_script.js")
|
||||
(() => {
|
||||
const blacklistedSchemes = [
|
||||
"ftp:",
|
||||
"mailto:",
|
||||
"tel:",
|
||||
"file:",
|
||||
"blob:",
|
||||
"javascript:",
|
||||
"about:",
|
||||
"magnet:",
|
||||
"ws:",
|
||||
"wss:",
|
||||
];
|
||||
|
||||
function rewriteURL(url) {
|
||||
const oldUrl = url
|
||||
if (!url) return url
|
||||
let isStr = (typeof url.startsWith === 'function')
|
||||
if (!isStr) return url
|
||||
// don't rewrite invalid URIs
|
||||
try { new URL(url) } catch { return url }
|
||||
|
||||
// don't rewrite special URIs
|
||||
if (blacklistedSchemes.includes(url)) return url;
|
||||
|
||||
// don't double rewrite
|
||||
const proxyOrigin = globalThis.window.location.origin;
|
||||
if (url.startsWith(proxyOrigin)) return url;
|
||||
if (url.startsWith(`/${proxyOrigin}`)) return url;
|
||||
if (url.startsWith(`/${origin}`)) return url;
|
||||
|
||||
const origin = (new URL(decodeURIComponent(globalThis.window.location.pathname.substring(1)))).origin
|
||||
//console.log(`proxychain: origin: ${origin} // proxyOrigin: ${proxyOrigin} // original: ${oldUrl}`)
|
||||
|
||||
if (url.startsWith("//")) {
|
||||
url = `/${origin}/${encodeURIComponent(url.substring(2))}`;
|
||||
} else if (url.startsWith("/")) {
|
||||
url = `/${origin}/${encodeURIComponent(url.substring(1))}`;
|
||||
} else if (url.startsWith(origin)) {
|
||||
url = `/${encodeURIComponent(url)}`
|
||||
} else if (url.startsWith("http://") || url.startsWith("https://")) {
|
||||
url = `/${proxyOrigin}/${encodeURIComponent(url)}`;
|
||||
}
|
||||
console.log(`proxychain: rewrite JS URL: ${oldUrl} -> ${url}`)
|
||||
return url;
|
||||
};
|
||||
|
||||
// monkey patch fetch
|
||||
const oldFetch = globalThis.fetch;
|
||||
globalThis.fetch = async (url, init) => {
|
||||
return oldFetch(rewriteURL(url), init)
|
||||
}
|
||||
|
||||
// monkey patch xmlhttprequest
|
||||
const oldOpen = XMLHttpRequest.prototype.open;
|
||||
XMLHttpRequest.prototype.open = function(method, url, async = true, user = null, password = null) {
|
||||
return oldOpen.call(this, method, rewriteURL(url), async, user, password);
|
||||
};
|
||||
const oldSend = XMLHttpRequest.prototype.send;
|
||||
XMLHttpRequest.prototype.send = function(method, url) {
|
||||
return oldSend.call(this, method, rewriteURL(url));
|
||||
};
|
||||
|
||||
// monkey patch service worker registration
|
||||
const oldRegister = ServiceWorkerContainer.prototype.register;
|
||||
ServiceWorkerContainer.prototype.register = function(scriptURL, options) {
|
||||
return oldRegister.call(this, rewriteURL(scriptURL), options)
|
||||
}
|
||||
|
||||
// monkey patch URL.toString() method
|
||||
const oldToString = URL.prototype.toString
|
||||
URL.prototype.toString = function() {
|
||||
let originalURL = oldToString.call(this)
|
||||
return rewriteURL(originalURL)
|
||||
}
|
||||
|
||||
// monkey patch URL.toJSON() method
|
||||
const oldToJson = URL.prototype.toString
|
||||
URL.prototype.toString = function() {
|
||||
let originalURL = oldToJson.call(this)
|
||||
return rewriteURL(originalURL)
|
||||
}
|
||||
|
||||
// Monkey patch URL.href getter and setter
|
||||
const originalHrefDescriptor = Object.getOwnPropertyDescriptor(URL.prototype, 'href');
|
||||
Object.defineProperty(URL.prototype, 'href', {
|
||||
get: function() {
|
||||
let originalHref = originalHrefDescriptor.get.call(this);
|
||||
return rewriteURL(originalHref)
|
||||
},
|
||||
set: function(newValue) {
|
||||
originalHrefDescriptor.set.call(this, rewriteURL(newValue));
|
||||
}
|
||||
});
|
||||
|
||||
// Monkey patch setter
|
||||
const elements = [
|
||||
{ tag: 'a', attribute: 'href' },
|
||||
{ tag: 'img', attribute: 'src' },
|
||||
// { tag: 'img', attribute: 'srcset' }, // TODO: handle srcset
|
||||
{ tag: 'script', attribute: 'src' },
|
||||
{ tag: 'link', attribute: 'href' },
|
||||
{ tag: 'link', attribute: 'icon' },
|
||||
{ tag: 'iframe', attribute: 'src' },
|
||||
{ tag: 'audio', attribute: 'src' },
|
||||
{ tag: 'video', attribute: 'src' },
|
||||
{ tag: 'source', attribute: 'src' },
|
||||
// { tag: 'source', attribute: 'srcset' }, // TODO: handle srcset
|
||||
{ tag: 'embed', attribute: 'src' },
|
||||
{ tag: 'embed', attribute: 'pluginspage' },
|
||||
{ tag: 'html', attribute: 'manifest' },
|
||||
{ tag: 'object', attribute: 'src' },
|
||||
{ tag: 'input', attribute: 'src' },
|
||||
{ tag: 'track', attribute: 'src' },
|
||||
{ tag: 'form', attribute: 'action' },
|
||||
{ tag: 'area', attribute: 'href' },
|
||||
{ tag: 'base', attribute: 'href' },
|
||||
{ tag: 'blockquote', attribute: 'cite' },
|
||||
{ tag: 'del', attribute: 'cite' },
|
||||
{ tag: 'ins', attribute: 'cite' },
|
||||
{ tag: 'q', attribute: 'cite' },
|
||||
{ tag: 'button', attribute: 'formaction' },
|
||||
{ tag: 'input', attribute: 'formaction' },
|
||||
{ tag: 'meta', attribute: 'content' },
|
||||
{ tag: 'object', attribute: 'data' },
|
||||
];
|
||||
|
||||
elements.forEach(({ tag, attribute }) => {
|
||||
const proto = document.createElement(tag).constructor.prototype;
|
||||
const descriptor = Object.getOwnPropertyDescriptor(proto, attribute);
|
||||
if (descriptor && descriptor.set) {
|
||||
Object.defineProperty(proto, attribute, {
|
||||
...descriptor,
|
||||
set(value) {
|
||||
// calling rewriteURL will end up calling a setter for href,
|
||||
// leading to a recusive loop and a Maximum call stack size exceeded
|
||||
// error, so we guard against this with a local semaphore flag
|
||||
const isRewritingSetKey = Symbol.for('isRewritingSet');
|
||||
if (!this[isRewritingSetKey]) {
|
||||
this[isRewritingSetKey] = true;
|
||||
descriptor.set.call(this, rewriteURL(value));
|
||||
//descriptor.set.call(this, value);
|
||||
this[isRewritingSetKey] = false;
|
||||
} else {
|
||||
// Directly set the value without rewriting
|
||||
descriptor.set.call(this, value);
|
||||
}
|
||||
},
|
||||
get() {
|
||||
const isRewritingGetKey = Symbol.for('isRewritingGet');
|
||||
if (!this[isRewritingGetKey]) {
|
||||
this[isRewritingGetKey] = true;
|
||||
let oldURL = descriptor.get.call(this);
|
||||
let newURL = rewriteURL(oldURL);
|
||||
this[isRewritingGetKey] = false;
|
||||
return newURL
|
||||
} else {
|
||||
return descriptor.get.call(this);
|
||||
}
|
||||
}
|
||||
});
|
||||
}
|
||||
});
|
||||
})();
|
||||
@@ -145,7 +145,11 @@ func (r *HTMLResourceURLRewriter) Read(p []byte) (int, error) {
|
||||
// inject <script> right after <head>
|
||||
isHeadToken := (r.currentToken.Type == html.StartTagToken || r.currentToken.Type == html.SelfClosingTagToken) && r.currentToken.Data == "head"
|
||||
if isHeadToken {
|
||||
injectScript(r.tokenBuffer, rewriteJSResourceUrlsScript)
|
||||
params := map[string]string{
|
||||
"PROXY_ORIGIN_INJECT_FROM_GOLANG": r.proxyURL,
|
||||
"ORIGIN_INJECT_FROM_GOLANG": fmt.Sprintf("%s://%s", r.baseURL.Scheme, r.baseURL.Host),
|
||||
}
|
||||
injectScriptWithParams(r.tokenBuffer, rewriteJSResourceUrlsScript, params)
|
||||
}
|
||||
|
||||
r.currentTokenProcessed = false
|
||||
@@ -171,6 +175,19 @@ func injectScript(tokenBuffer *bytes.Buffer, script string) {
|
||||
)
|
||||
}
|
||||
|
||||
func injectScriptWithParams(tokenBuffer *bytes.Buffer, script string, params map[string]string) {
|
||||
for old, new := range params {
|
||||
script = strings.ReplaceAll(
|
||||
script,
|
||||
fmt.Sprintf("`${%s}`", old),
|
||||
fmt.Sprintf("`${%s}`", new),
|
||||
)
|
||||
}
|
||||
tokenBuffer.WriteString(
|
||||
fmt.Sprintf("\n<script>\n%s\n</script>\n", script),
|
||||
)
|
||||
}
|
||||
|
||||
// possible ad-blocking / bypassing opportunity here
|
||||
func modifyInlineScript(scriptContentBuffer *bytes.Buffer) string {
|
||||
return html.UnescapeString(scriptContentBuffer.String())
|
||||
|
||||
@@ -27,12 +27,14 @@
|
||||
if (blacklistedSchemes.includes(url)) return url;
|
||||
|
||||
// don't double rewrite
|
||||
const proxyOrigin = globalThis.window.location.origin;
|
||||
//const proxyOrigin = globalThis.window.location.origin;
|
||||
const proxyOrigin = `${PROXY_ORIGIN_INJECT_FROM_GOLANG}`;
|
||||
if (url.startsWith(proxyOrigin)) return url;
|
||||
if (url.startsWith(`/${proxyOrigin}`)) return url;
|
||||
if (url.startsWith(`/${origin}`)) return url;
|
||||
|
||||
const origin = (new URL(decodeURIComponent(globalThis.window.location.pathname.substring(1)))).origin
|
||||
//const origin = (new URL(decodeURIComponent(globalThis.window.location.pathname.substring(1)))).origin
|
||||
const origin = `${ORIGIN_INJECT_FROM_GOLANG}`;
|
||||
//console.log(`proxychain: origin: ${origin} // proxyOrigin: ${proxyOrigin} // original: ${oldUrl}`)
|
||||
|
||||
if (url.startsWith("//")) {
|
||||
|
||||
Reference in New Issue
Block a user