Skip to content

todo.md

Latest commit

 

History

History
230 lines (189 loc) · 13.6 KB

todo.md

File metadata and controls

230 lines (189 loc) · 13.6 KB

Project To-Do & Recommendations

Completed (v3.6.0+)

UI/UX Improvements (2025-12-17)

  • Clear Dead button - Remove dead proxies without clearing active ones
  • Activity log auto-scroll - Minimum height, thread-safe logging, reliable scroll behavior
  • Adjustable column widths - Proxy list columns resizable by dragging header edges
  • Pinned progress bar - Progress bar stays visible, no more layout jumping
  • Unique proxy per thread - Traffic engine assigns unique proxies to concurrent tasks

Browser Fingerprint (2025-12-17)

  • OS Emulation profiles - 6 profiles (Win/Mac/Linux × Chrome/Firefox/Safari/Edge)
  • Fingerprint uniqueness - Canvas, AudioContext, ClientRect, performance.now() noise per session
  • Fingerprint rotation - Auto-rotate after 50 requests or 30 minutes (configurable)
  • Engine activity logging - Browser/curl engine events now show in GUI activity log

Cloudflare Bypass Improvements (2025-12-17)

  • Enhanced detection markers - 20+ markers with confidence scoring and title matching
  • Multi-stage bypass strategy - 4-stage approach: JS wait, human simulation, checkbox click, API solve
  • Cookie-based verification - cf_clearance cookie + content analysis for reliable success detection
  • Turnstile iframe handling - Extracts sitekey from iframes, attempts checkbox clicks
  • Human behavior simulation - Mouse movements, scrolling, randomized click offsets
  • Detailed bypass logging - Stage-by-stage progress with timing in activity log
  • Double verification - Post-bypass verification before counting as success

Export System (2025-12-17)

  • Folder selection dialog - Prompts for export folder if not set in settings
  • Category export buttons - All, HTTP, HTTPS, SOCKS buttons (color-coded)
  • Protocol toggle - Checkbox to include/exclude protocol prefix (http://, socks5://)

Bug Fixes (2025-12-17)

  • Request/Success counter mismatch - Moved total_requests++ to start of request (guarantees req >= success+failed)
  • Success count accuracy - Double-verification after CF bypass before counting
  • CaptchaProvider enum error - Fixed get_available_providers() to return strings instead of enum objects

New Features (2025-12-20)

  • Protocol color coding - HTTP (blue), HTTPS (purple), SOCKS4 (dark teal), SOCKS5 (teal) in proxy list
  • Configurable referers - Load from resources/referers.txt with fallback to defaults
  • Traffic pattern randomization - Burst mode with configurable requests per burst and sleep intervals
  • Responsive UI - Scrollable config areas for small screens (960x540), minsize 800x500
  • DPI Scaling - Scale-aware UI elements (sidebar, buttons, fonts, grid rows) for high-DPI displays
  • Draggable activity log - Resizable panels via DraggableSash component (Dashboard & Stress Test)
  • Two-phase proxy checking - Only check validators after proxy confirmed alive (saves bandwidth)

Bug Fixes (2025-12-20)

  • Export button scaling - Fixed export proxy buttons not scaling with DPI
  • VirtualGrid column resize - Fixed header/content misalignment when resizing columns
  • CTk place() limitation - Fixed ValueError by using configure() for widget dimensions
  • GeoIP fallbacks - Improved fallback chain and increased API timeouts

Completed (v3.4.0)

Multi-Validator Anonymity System

  • Multi-validator proxy checking - 6 built-in validators (httpbin, ip-api, ipify, ipinfo, azenv, wtfismyip)
  • Anonymity scoring (0-100) - Aggregated results from multiple endpoints
  • Validator selection UI - Checkbox list in Settings with test depth (Quick/Normal/Thorough)
  • Header leak detection - Checks 20+ IP-exposing headers and 17+ proxy-revealing headers

Proxy Persistence & Management

  • Proxy persistence between sessions - Active proxies saved to resources/proxies.json
  • Auto-save during testing - Saves every 25 active proxies found
  • Save on STOP/Close - Proxies saved when stopping test or closing app
  • Clipboard import - Import proxies from clipboard with deduplication
  • Scrape deduplication - New scrapes skip already-checked proxies
  • Clear All button - Clears proxies from memory and disk

GeoIP & Display

  • MaxMind GeoLite2 local database - Bundled 60MB database for fast lookups
  • API fallback - Falls back to ip-api.com when local lookup fails
  • Country display fix - Text-based [CC] City format (Tkinter doesn't render emoji flags)
  • Anonymity counters - Shows Elite/Anonymous/Transparent/Unknown counts

UI Improvements

  • Dashboard grid layout - Scalable layout with browser stats above activity log
  • Separate captcha balances - Shows 2captcha and AntiCaptcha balances separately
  • System proxy - Renamed from "Scraper Proxy" with separate Scrape/Check toggles
  • Grid auto-sort - Re-sorts every 10 items to maintain order during testing
  • Boolean casting fix - Fixed browser headless parameter (was number, expected boolean)

Completed (v3.7.1 - 2025-12-23)

v3.7.1 Connection Modes - NAT Traversal Options

  • Direct Mode - Standard WebSocket connection for LAN/port-forwarded setups
  • Relay Mode - NAT traversal via VPS relay server (both sides connect outbound)
  • Cloudflare Tunnel Mode - Secure WebSocket through Cloudflare (hidden IP, DDoS protection)
  • Mode Selector UI - Segmented button in Master Control page (Direct/Relay/Cloudflare)
  • Relay Server - relay.py entry point with core/relay_server.py routing
  • Relay Client - core/relay_client.py for Controller connecting to relay
  • Relay Deployment - deploy/dm-relay.service + deploy/install-relay.sh
  • Cloudflare Docs - docs/cloudflare-tunnel.md with quick start and permanent setup
  • Updated Packager - package_server.py includes relay components (82.6KB, 25 files)
  • Slave CLI - Added --mode argument and DM_CONNECTION_MODE env var

Completed (v3.7.0 - 2025-12-23)

v3.7.0 Master/Slave Architecture - ALL PHASES COMPLETE

  • Phase 1: Communication Layer - WebSocket server/client with HMAC authentication
  • Phase 2: Headless Client - slave.py entry point with command dispatcher
  • Phase 3: Master GUI Components - Master control page with server management, slave list, task distribution
  • Phase 4: SSH/RDP Scanner - Core scanner module complete
    • core/scanner.py - NetworkScanner with async port scanning, SSH/RDP detection
    • _handle_start_scan in SlaveController - Slave-side scan execution
    • start_scan_on_slaves in MasterServer - Master-side command distribution
    • ✅ Scanner UI controls in Master Control page
    • ✅ 39 scanner tests + 24 MasterServer tests (all passing)
  • Phase 5: Linux Deployment - systemd service and install scripts
    • deploy/dm-slave.service - systemd service with security hardening
    • deploy/install.sh - Automated Debian/Ubuntu installer
    • deploy/uninstall.sh - Clean uninstaller
  • Phase 6: Integration & Testing - End-to-end verification
    • tests/test_integration.py - 11 integration tests
    • ✅ 129 total tests passing

Completed (v3.6.3 - 2025-12-23)

Code Quality & v3.7.0 Preparation

  • Fixed 185+ linting errors - Type annotations, import sorting, unused variables, try-except patterns
  • All linting clean - 0 ruff errors, modern Python type syntax
  • Proxy chaining preparation - Added system_proxy parameter for future SOCKS5 tunneling
  • Documentation - CLAUDE.MD project context, v3.7.0-plan.md (1,745 lines)
  • WebSocket dependencies - Added websockets>=12.0 and asyncssh>=2.14.0

Completed (v3.6.5 - 2025-12-22)

Foundation & Testing

  • Testing Infrastructure: Added tests/ directory with pytest and pytest-asyncio
  • Unit Tests: Implemented tests for Models, Utils, and Configuration (100% pass)
  • Config Env Vars: Implemented DM_* environment variable overrides for Linux slave support
  • Bug Fixes: Fixed ProxyConfig serialization and deduplicate_proxies whitespace handling

Completed (v3.6.1+ Refactor - 2025-12-21)

Codebase Structure & Quality

  • Split ui/app.py: Modular page architecture with ui/pages/ directory
    • ui/pages/dashboard.py - Dashboard page (~500 lines)
    • ui/pages/proxy_manager.py - Proxy Manager page (~350 lines)
    • ui/pages/stress_test.py - Stress Test page (~360 lines)
    • ui/pages/settings.py - Settings page (~350 lines)
    • ui/scaling.py - DPI scaling utilities
    • Widget binding methods for backward compatibility
  • Linting & Formatting: Full dev tooling setup
    • dev-requirements.txt (black, ruff, mypy, pytest, pre-commit)
    • pyproject.toml with Black, Ruff, MyPy, Pytest configuration
    • All files pass Black formatting and Ruff linting
    • Fixed 27 linting issues in app.py (imports, unused vars, closure bugs, duplicates)

Backlog

v3.7.1 Connection Modes - COMPLETE

  • Direct Mode: Standard WebSocket for LAN/port-forwarded setups
  • Relay Mode: NAT traversal via VPS relay server
  • Cloudflare Tunnel Mode: Secure WebSocket through Cloudflare
  • Mode Selector UI: Segmented button in Master Control
  • Relay Deployment: systemd service + install script for relay server
  • Documentation: Cloudflare Tunnel setup guide

v3.7.0 Master/Slave - COMPLETE

  • Communication Layer: WebSocket with HMAC authentication (Phase 1)
  • Headless Client: slave.py + SlaveController command dispatcher (Phase 2)
  • Master GUI: ui/pages/master_control.py + core/master_server.py (Phase 3)
  • Scanner Module: core/scanner.py with NetworkScanner class (Phase 4)
  • Deployment: deploy/ with systemd service and install scripts (Phase 5)
  • Integration Tests: tests/test_integration.py with 11 tests (Phase 6)
  • Scanner Results Display: Dedicated panel for scan results (Optional Enhancement)

Codebase Structure & Quality

  • Standardize Testing: Add more tests for engine logic and validators
  • Pre-commit hooks: Set up pre-commit with black/ruff

Traffic Realism Features

  • Traffic pattern randomization: Burst/sleep patterns for more realistic traffic profiles (v3.6.1)
  • Configurable Referers: Externalize referers to resources/referers.txt (v3.6.1)
  • Session cookie persistence: Maintain cookies across runs for session continuity
  • Scenario Mode: Visit profiles that hit target, wait, then visit sub-pages

Proxy Management

  • Protocol color coding: Color code protocol category in proxy checker results (v3.6.1)
  • Source Health Tracking: Track success rates of URLs in sources.txt, auto-disable dead sources
  • Auto-Update Sources: Fetch fresh sources.txt from remote repository
  • Center Value/Text center value/text in each resizable results column for proxy manager

User Interface & Logging

  • File-Based Logging: Optional file logging with rotation for debugging long sessions
  • Session Export: Export session statistics (Success/Fail/Proxy Count) to CSV/JSON

Master/Slave & Security Features (v3.7.0-3.7.1) - COMPLETE

  • Key Exchange: HMAC-SHA256 authentication with challenge-response (Phase 1)
  • Data Sync: WebSocket communication layer with message routing (Phase 1)
  • Testing: 129 total tests (15 WebSocket + 24 SlaveController + 24 MasterServer + 39 Scanner + 11 Integration + others)
  • Headless Client: CLI (slave.py) with SlaveController command dispatcher (Phase 2)
  • Master GUI: master_control.py with server management, slave list, task distribution (Phase 3)
  • MasterServer: Thread-safe wrapper for WebSocket server with GUI callbacks (Phase 3)
  • SSH/RDP Scanner: core/scanner.py with NetworkScanner class (Phase 4)
  • Scanner Integration: _handle_start_scan in SlaveController, start_scan_on_slaves in MasterServer (Phase 4)
  • Scanner UI: Targets/Ports input + Scan button in Master Control page (Phase 4)
  • Deployment: deploy/dm-slave.service, deploy/install.sh, deploy/uninstall.sh (Phase 5)
  • Integration Testing: tests/test_integration.py with 11 tests (Phase 6)
  • Connection Modes: Direct, Relay, Cloudflare Tunnel modes for NAT traversal (v3.7.1)
  • Relay Server: relay.py + core/relay_server.py + deployment scripts (v3.7.1)
  • Scanner Results Page: Dedicated display for discovered SSH/RDP servers (Optional Enhancement)

Known Issues (Resolved)

Traffic Attack Module (Fixed in v3.2.0)

  • TLS/Header Mismatch: curl_cffi impersonations mixed with unrelated User-Agents - Removed HeaderManager randomization
  • Session Reuse: TLS sessions/cookies reused across simulated users - Fresh AsyncSession per task
  • Accept Header: Fallback Accept: */* suspicious for browser traffic - Proper browser headers

Historical Notes (Completed)

  • Notification when proxy scraping finished - Added popup notification
  • Make UI elements dynamically scalable - Grid layout implemented
  • Setup Proper OS Emulation/Spoofing - OS profiles with consistent navigator properties, Client Hints, WebGL spoofing
  • Export folder selection - Prompts for folder selection, saves to settings
  • Category export buttons - Export buttons: All, HTTP, HTTPS, SOCKS with protocol toggle