Bug-Byu-LoL/README.md at 76da7f5376903f2124be25e5243ff01aa56b32fd

Fork: 0
leon / Bug-Byu-LoL
Find file
Newer
Older
Bug-Byu-LoL / README.md
Leonardus Kristaris Sastra on 27 May 2020 2 KB Update README.md
Raw Blame History
Bug-Byu-LoL
===============

Cara menggunakan bug byu memanfaatkan reverse proxy nginx + ssh tunneling pada centos

## Persiapan

1. VM dengan OS CentOS 7
2. Terinstall Nginx (Fresh)
3. Memiliki domain


## Instalasi

#### 1. Install Nginx

`$ yum install epel-release -y`

`$ yum install nginx -y`

#### 2. Enable dan Start Service Nginx

`$ systemctl enable nginx`

`$ systemctl start nginx`

#### 3. Konfigurasi Nginx

`$ vi /etc/nginx/nginx.conf`

```
# Tambahkan konfigurasi berikut pada bagian paling bawah konfigurasi (mentok)

stream {
    tcp_nodelay on;
    resolver 8.8.8.8;
    resolver_timeout 5s;    map $ssl_server_name $srv_name {
        ~(.+) $1:11097;
        "TLSv1.2" https;
        "TLSv1.3" https;
        "TLSv1.1" https;
        "TLSv1.0" https;
        default unix:/run/nginx.sock;
    }    server {
        listen 443 ssl;
        ssl_certificate     /path/your/ssl.crt;
        ssl_certificate_key /path/your/ssl.key;
        ssl_preread off;
        proxy_ssl off;

        proxy_pass $srv_name;
    }
}
```

#### 4. Buat self-signed SSL

`$ openssl genrsa -out tls.domain-anda.id.key 2048`

`$ openssl req -new -x509 -key tls.domain-anda.id.key -out tls.domain-anda.id.crt -days 3650 -subj /CN=tls.domain-anda.id -extensions SAN -config 'tls.domain-anda.id.conf'`

***) Ribet ? :** https://www.selfsignedcertificate.com/

#### 5. Tes konfigurasi dan reload service

`$ nginx -t`

`$ nginx -s reload`

#### 6. Tes koneksi SSH over TLS

Pada local device Anda, silakan untuk dibuat file konfigurasi SSH berikut ini :

`$ vi ~/.ssh/config`

```
Host *.id
    ProxyCommand openssl s_client -quiet -servername %h -connect IP-Server-Nginx:443
```

`$ ssh tls.domain-anda.id`

```
depth=0 CN = tls.domain-anda.id
verify error:num=18:self signed certificate
verify return:1
depth=0 CN = tls.domain-anda.id
verify return:1

user@tls.domain-anda.id's password:
```

#### 7. Pointing Bug ke domain Anda

**SSH** : tls
**IG** : instagram.fotp3-3.fna.fbcdn.net
**YT** : m.youtube.com

**Contoh** : 

- instagram.fotp3-3.fna.fbcdn.net.domain-anda.id | A | IP-Server-Nginx
- m.youtube.com.domain-anda.id | A | IP-Server-Nginx
- tls.domain-anda.id | A | IP-Server-Nginx

#### 8. Konfigurasi HTTP Injector

````
SSH
---------
Host : tls.domain-anda.id
Port : 443
User : user
Password : Password

BUG
---------
Tunnel Type : SSH
TLS/SSL (stunel)
SNI: instagram.fotp3-3.fna.fbcdn.net.domain-anda.id / m.youtube.com.domain-anda.id
```

#### 9. Hasil

![IG](http://sync.s3-id-jkt-1.kilatstorage.id/ig.jpeg)