Results 1 to 4 of 4

Thread: Cannot bypass web content filter to perform apt-get

  1. 2019-12-09 #1
    whyamialwaysbroken
    whyamialwaysbroken is offline Junior Member
    Join Date
    2019-Dec
    Posts
    2

    Cannot bypass web content filter to perform apt-get

    I feel as though i've searched everywhere for an answer but i cannot find one that works.
    My Kali box is behind SSL-Inspect, which breaks apt-get because the certificate (of the SSL-Inspect) is not trusted.

    I'm simply looking for a way to be able to run apt-get while being MITM.

    I have tried adding the following to sources.list:
    [trusted=yes]
    [allow-insecure=yes]

    and i've tried adding the following to /etc/apt/apt.conf.d/
    Aquire::https {
    Verify-Peer "false";
    Verify-Host "false";
    }

    none of those have worked.

    If i use "deb https://http.kali.org/kali kali-rolling main non-free contrib" then i get the following:
    "Certificate verification failed: the certificate is NOT trusted"

    If i use "deb http://http.kali.org/kali kali-rolling main non-free contrib" then i get the following:
    "Could not connect to kali.download:80 - connection refused"

    Does anyone know how to bypass these checks for apt-get?
  2. 2019-12-17 #2
    Mister_X
    Mister_X is offline Senior Member
    Join Date
    2016-Dec
    Posts
    806
    What is the filename (exact) in which you put that Acquire::https?
  3. 2019-12-17 #3
    jonasl
    jonasl is offline Junior Member
    Join Date
    2019-Dec
    Location
    Sweden
    Posts
    4
    Connecting to http.kali.org on port 80 seems to work for me:

    Code:
    ➜  ~ curl -v http://kali.download:80
*   Trying 104.18.102.100...
* TCP_NODELAY set
* Connected to kali.download (104.18.102.100) port 80 (#0)
> GET / HTTP/1.1
> Host: kali.download
> User-Agent: curl/7.64.1
> Accept: */*
>
< HTTP/1.1 200 OK
< Date: Tue, 17 Dec 2019 15:56:15 GMT
< Content-Type: text/html
< Transfer-Encoding: chunked
< Connection: keep-alive
< Set-Cookie: __cfduid=dcc61acb424bcd9410604f5a21f69f19f1576598175; expires=Thu, 16-Jan-20 15:56:15 GMT; path=/; domain=.kali.download; HttpOnly; SameSite=Lax
< Expires: Tue, 17 Dec 2019 19:56:15 GMT
< Cache-Control: public, max-age=14400
< CF-Cache-Status: MISS
< Server: cloudflare
< CF-RAY: 546a16033f7ecb00-ARN
<
<html>
<head><title>Index of /</title></head>
<body bgcolor="white">
<h1>Index of /</h1><hr><pre><a href="../">../</a>
<a href="kali/">kali/</a>                                              17-Dec-2019 12:05                   -
<a href="kali-images/">kali-images/</a>                                       15-Dec-2019 02:07                   -
</pre><hr></body>
</html>
* Connection #0 to host kali.download left intact
* Closing connection 0
  4. 2019-12-17 #4
    whyamialwaysbroken
    whyamialwaysbroken is offline Junior Member
    Join Date
    2019-Dec
    Posts
    2
    the names i've used for that file are:
    99ssl
    01ssl
    88ssl

    Any recommendations on what it should be?

Similar Threads

  1. [HowTo]Perform a Scan Task on OpenVAS
    By wingcommander'99 in forum How-To Archive
    Replies: 0
    Last Post: 2022-04-08, 11:37
  2. DOM based XSS filter bypass checker
    By losethefur in forum Project Archive
    Replies: 0
    Last Post: 2021-11-20, 14:02
  3. Wash ERROR: Failed to compile packet filter
    By corvus in forum General Archive
    Replies: 1
    Last Post: 2015-08-17, 04:07

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules