Using this command line tool you fool Windows to think is connected to the Internet. You chose what domains will be simulated and they will be server from your computer. The rest will go to the real internet. You can use it for:
- Phishing and DNS pharming demos
- Allow the use of software that require an active Internet connection
- Tricking Windows notification icons to show you are connected even when you are fully offline
- Installing software that use an online installer
When running Internet Simulator, it will:
- Create SSL certificates for the domains you are trying to simulate and saving it in your Trusted Root Certficate Authorities
- Start a self hosted DNS server for simulation purposes. It does not rely on 'hosts' file so you can simulate every domain including Microsoft official domains
- Start a self hosted HTTP and HTTPS servers. HTTPS server will use the generated certificates.
- Simulate Microsoft Network Connectivity Status Indicator (NCSI) domains so Windows will show its status as Connected to the Internet
- Backup your Network Cards DNS configuration and change the computer DNS to
127.0.0.1
. This will start filtering the traffic throught the simulator
When you stop it, it will:
- Stop DNS, HTTP and HTTPS self hosted servers
- Delete the temporary generated certificates from your Personal Store and your Trusted Root Certficate Authorities. So no traces in your System.
- Restore the Network Interfaces configuration to their original settings
Use like this:
InternetSimulator.exe -w “http://microsoft.com/file","C:\hello.txt" "https://microsoft.com/file2","C:\hello2.txt" -f “https://google.com/download.file","C:\file.exe" -v
-w
allows you to simulate websites. You can pass multiple pairs of simulated websites. In the examples when you browse to http://microsoft.com/file
it will show the content of the file C:\hello.txt
and when you browse https://microsoft.com/file2
it will show the content of the file C:\hello2.txt
-f
allows you to simulate files to be downloaded. You can pass multiple pairs of simulated download files. It works exactly like -w
but send additional headers to the browser to download the file to hard disk instead of showing it in the browser. In the example when you browse https://google.com/download.file
it will start the download of the file C:\file.exe
-v
verbose parameters. By default is false. It shows additional information about every DNS resolution and Web page served
-ncsi
Network Connectivity Status Indicator (NCSI). By default is true. It make Windows icons to detect that you are connected to the Internet. If selected as false, Windows will show you are not connected to the Internet but still will simulated websites and files
Thanks for tying it. We are active supporting this tool and are open to your PRs 😄