examples/iframe_injector.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18

# Usage: mitmdump -s "iframe_injector.py url"
# (this script works best with --anticache)
from libmproxy.protocol.http import decoded


def start(ctx, argv):
    if len(argv) != 2:
        raise ValueError('Usage: -s "iframe_injector.py url"')
    ctx.iframe_url = argv[1]


def handle_response(ctx, flow):
    with decoded(flow.response):  # Remove content encoding (gzip, ...)
        c = flow.response.replace(
            '<body>',
            '<body><iframe src="%s" frameborder="0" height="0" width="0"></iframe>' % ctx.iframe_url)
        if c > 0:
            ctx.log("Iframe injected!")