Skip to content

Stealth: Network Request Scattering #90

Open
Open
Stealth: Network Request Scattering#90
@cookiengineer

Description

@cookiengineer
cookiengineer
opened on Dec 13, 2021

In order to reduce the typical network traffic correlation attack surface, it is necessary to implement a Ronin functionality for both DNS and HTTP/S traffic.

New Stealth "internet/scatter" Setting:

  • If set to direct it tries to route as much traffic as possible through the local internet connection
  • If set to proxy it tries to proxy as much traffic as possible through the local TOR proxy
  • If set to scatter it tries to scatter traffic as much as possible across the network

Necessary features:

  • The Router Middleware needs to be able to do DNS requests when it receives resolve requests for public domains.
  • The Request API needs to be able to introduce a padding in the request body that allows to send requests in a randomized manner (scatter or proxy).
  • The Request (or Router) API needs to be able to reroute all DNS requests through TOR via DNS over HTTPS (proxy)
  • The Request API needs to be able to introduce a network latency artificially, setting the timeout to a higher value and using a setTimeout() with a random offset in order to schedule a network request at a slightly later point in time.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions