Lexus
December 9, 2022, 10:42am
1
Нужна помощь в настройке ssh payload, который будет работать в ТМ. На данный момент данный payload уже заблокирован: GET wss://bughost/ HTTP/1.0[crlf]Host: ssh-host[crlf]Connection: Keep-Alive[crlf]Upgrade: websocket[crlf][crlf]
На данный момент не знаю как из вариантов есть рабочий. Кто в этом соображает просьба помочь.
А также если есть кто может разобраться в декомпиляции, форматировании и сборке апк то напишите мне в ЛС. Нужно пересобрать psiphon по новым данным, но я не знаю как.
tango
December 16, 2022, 2:47pm
2
I don’t know what you mean when you say “ssh payload”. Is it a prefix to add to Psiphon Obfuscated SSH connections? I did not know that was something you can configure.
The only thing that comes to mind is Outline’s recent addition of prefix support:
Jigsaw-Code:master ← Jigsaw-Code:bemasc-prefix
opened 09:32PM - 25 Oct 22 UTC
This is an **experimental** version of Outline with "custom salt prefix" support… , currently working on Windows, Linux, and Android. It has not yet been tested on macOS/iOS. A [pre-built APK](https://github.com/Jigsaw-Code/outline-client/raw/c4775ecc92999edc5841f02ce4ba35f7c8f61f1a/app-debug.apk) is available for Android.
Custom salt prefixes are **experimental** and are **not as secure** as standard Outline, so this version should be used **only for testing**.
To use the prefix feature with [Dynamic Keys](https://www.reddit.com/r/outlinevpn/wiki/index/dynamic_access_keys/), add a `"prefix"` key to the JSON object, with a string value representing the prefix you want. (You can use escape codes like `\xFF` to represent non-printable byte values.) The prefix is a freeform string of up to 32 bytes, each represented as a unicode codepoint in the U+0 to U+FF range.
To use this feature with `ss://` Access Keys, add a URL parameter like `&prefix=...` to the ss:// URL's query parameters, so that the URL looks like `.../?outline=1&prefix=OUTLINE#Name-of-the-server`. You must use the `encodeURIComponent()` function to convert your prefix into escaped form suitable for inclusion in a URL.
Possible prefixes of interest (note: longer prefixes are less secure):
| JSON | URI-encoded|
|------------------|---------|
| `"POST "` | `POST%20` |
| `"HTTP/1.1"` | `HTTP%2F1.1` |
| `"POST / HTTP/1.1"` | `POST%20%2F%20HTTP%2F1.1` |
| `"GET / HTTP/1.1\r\n\r\n"` | `GET%20%2F%20HTTP%2F1.1%0D%0A%0D%0A` |
| [`"\u0016\u0003\u0001\u0002\u0000"`](https://geneva.cs.umd.edu/posts/iran-whitelister/#:~:text=Example%3A%20GET%20testing123-,HTTPS%20Fingerprint,-The%20HTTPS%20protocol) | `%16%03%01%02%00` |
More potentially useful prefixes are mentioned [here](https://geneva.cs.umd.edu/posts/iran-whitelister/). Note that some prefixes may be more effective on specific port numbers.
Possible prefixes of interest (note: longer prefixes are less secure):
JSON
URI-encoded
"POST "POST%20
"HTTP/1.1"`HTTP%2F1.1
"POST / HTTP/1.1"POST%20%2F%20HTTP%2F1.1
"GET / HTTP/1.1\r\n\r\n"GET%20%2F%20HTTP%2F1.1%0D%0A%0D%0A
"\x16\x03\x01\x02\x00"%16%03%01%02%00
More potentially useful prefixes are mentioned here . Note that some prefixes may be more effective on specific port numbers.
Lexus
December 16, 2022, 3:02pm
3
@tango I’m talking about payload stuff of tools like http injector etc. They support payload injection to bypass censorhsip. So I’m looking
Lexus
December 17, 2022, 7:14am
5
I know, but I’m using it to bypass censorship. In my country, no free sites.