Shifting TLS+h2 fingerprint

[clouedoc]

Hello!

I'm looking for some kind of tool that would allow me to intercept TLS+h2, and create new sessions with different fingerprints.

My goal is to have a generic SOCKS5 proxy that could handle rewriting the TLS+h2 fingerprints, block some h2 requests, do some caching, etc. That would remove a lot of complexity when instrumenting Chrome and improve performances as well. (request interception takes a lot of CPU doing the encoding of the messages)

Is rama a good fit for this?

Cheers

[GlenDC]

Yes all that is very easily do-able with rama, but it does require you to know what you are doing and know your way around rust well enough. If that is the case Rama will make your life very easy here as it can already do most out of the box. For caching you'll need to use a third party library or something from yourself but either way very easy to integrate in your rama-based stack. So all good.

Also consider becoming a sponsor as it helps sustain the free and open source project. Next to that we also offer service contracts in case you want our help to get you from the ground with a first version.

Either way best of luck.

[GlenDC]

How much would you charge for a first version with TLS+h2 fingerprint change + primitive caching, out of curiosity?

For that you best mail to glen@ramaproxy.org, with your exact requirements etc. Billing for such services is per hour. With a discount in case you are a high enough tier sponsor.

If I end up using Rama, I'll definitely send some of the savings your way :-)

Greatly appreciated

right now I'm focused on patching Chromium,

Best of luck with that, I've been there a couple of times, a never ending battle for sure.
Patching firefox might be more fruitful depending how advanced you need to go as you actually have the full source, compared to chromium which is not the same as chrome or edge. Of course firefox is a minority traffic UA so has its own disadvantages.

Thought I should at least ask what it's capable of!

Read more at https://ramaproxy.org/book/diy.html. But the goal of rama is to be able to build whatever you need to build, reuse the components and building blocks that exist already here or by the community and be able to put it together in whatever way you wish with anything custom you desire. No magic, all clear as easily seen in your source code. No hidden paths.

[clouedoc]

For that you best mail to glen@ramaproxy.org, with your exact requirements etc. Billing for such services is per hour. With a discount in case you are a high enough tier sponsor.

Okay, I'll wait until I'm serious enough about it before wasting your time asking for a quote.

Of course firefox is a minority traffic UA so has its own disadvantages.

Yes that's the big problem, I really need to have a majority UA for this particular use-case.

I'm still a stage where patching Chrome is still relatively easy, but I think I'll change my tune in a month or two. I've been warned a couple of times but I'm not listening :).
Something that you might find of interest, the X-Chrome-Browser-Validation header: https://github.com/dsekz/chrome-x-browser-validation-header

be able to put it together in whatever way you wish with anything custom you desire

It's definitely something I value. I'm following your docs right now, learning about Tower services first, and moving back on to Rama.

The docs are really nice by the way! I have to say that the Llama pictures add an "acid trip" feel to it haha.

[GlenDC]

Something that you might find of interest, the X-Chrome-Browser-Validation header: https://github.com/dsekz/chrome-x-browser-validation-header

Haven't seen those headers before yet. Even though we do fingerprint chrome. @soundofspace in your browser work have you encountered these before?

[soundofspace]

Yea I have come across them on Google websites, but haven't really looked into them yet. Also not exactly sure what triggers them to be active

[GlenDC]

Ok I'm just going to ignore for now. Someone can always request and contribute it if ever needed.