Decoy Routing (DR), a promising approach to censorship circumvention, uses routers (rather than end hosts) as proxy servers. Users of censored networks, who wish to use DR, send specially crafted packets, nominally addressed to an uncensored website. This project is based on implementing Decoy Routing from scratch using Email as Covert Channel.
This major components of this repository are:
- Client, who wishes to use Decoy Routing and reach a censored website.
- Overt-destination, a website, which censor thinks client wants to visit.
- Covert-destination, a website, which client really wants to visit.
- Proxy, a machine, who proxies client's traffic and fetches covert-destination for it.
- SDN Controller, which installs relevant redirection rules on SDN switches.
- Paper : https://cs.slu.edu/~esposito/teaching/3550/reports/RahulChauhan-Report-S20.pdf
- Presentation: https://www.youtube.com/watch?v=kv6sg16MRG0&feature=youtu.be
These instructions will get you a copy of the project up and running on your local machine for development and testing purposes. See deployment for notes on how to deploy the project on system.
These steps are for Ubuntu 18.04 and derivatives.
Clone a fresh copy of code. Install Dependencies and Build Code.
https://github.com/rkc007/DecoyRKC.git
chmod +x build_dependencies.sh && chmod +x build_code.sh
./build_dependencies.sh && ./build_code.sh
Install all dependencies and code one by one.
sudo apt update && sudo apt install gcc make python-minimal libssl-dev git python-pip
sudo apt install libgmp-dev build-essential python-dev python-pip libmpfr-dev libmpc-dev
pip install seccure
pip install ryu
sudo apt install libpcap-dev
There are two signaling mechanisms in place - "smtplib/imap" and webmail. "smtplib/imap" is written in python for sending emails, when invoked by client code. Any of them can be used with client's c code.
- Install Chrome
- Install ChromeDriver
- Test whether chromedriver works by typing
$ chromedriver
in terminal. pip install scapy selenium
pip install scapy easyimap
cd ./client/c
make
cd ../../
cd ./proxy/
make center
make single_conn
cd ../
cd <repo_path>/client/c
sudo ./client.o OD_IP 443 URL TIMEOUT
- Example Usage :
sudo ./client.o https://allowed_site.com 443 https://censored_site.com 40
- By default, webmail singalling mechanism is used. This can be changed to "smtp/imap" based signaling in client.c by changing 'client_email.py' to 'smtp_client_send.py'
cd <repo_path>/proxy/
sudo ./center.o
cd <repo_path>/controller/
ryu-manager controller_HP.py
- Depending upon which signalling mechanism used in client setup, run corresponding email receiver in controller system.
This project is licensed under the MIT License - see the LICENSE file for details
- base64.h used from https://github.com/superwills/NibbleAndAHalf