←back to thread

Doxx/Darkflare: DarkFlare TCPoCDN (TCP over CDN)

(github.com)
81 points josephscott | 1 comments | 20 Nov 24 22:49 UTC | HN request time: 0.73s | source
Show context
tomsonj ◴[21 Nov 24 02:46 UTC] No.42200584[source]
chisel is a similar tool in this space https://github.com/jpillora/chisel

I don’t get why headers and requests need to be spoofed if all traffic is over https?

replies(4): >>42200669 #>>42200828 #>>42201273 #>>42201386 #
1. duskwuff ◴[21 Nov 24 05:22 UTC] No.42201386[source]
> I don’t get why headers and requests need to be spoofed if all traffic is over https?

Because the traffic is to a CDN endpoint (like Cloudflare) which expects it to be a HTTP message.