Bypassing Content-based internet packages with an SSL/TLS Tunnel, SNI Spoofing, and DNS spoofing

TL;DR

This paper explores methods to bypass ISP content-based filtering using SSL/TLS tunneling, SNI spoofing, and DNS spoofing, enabling users to access unrestricted internet content despite ISP restrictions.

Contribution

It introduces alternative techniques to HTTP injector for bypassing ISP traffic filters through SSL/TLS tunnels, SNI spoofing, and DNS spoofing.

Findings

Successful bypass of ISP filters using SSL/TLS tunnels

Effective SNI spoofing to access restricted content

DNS spoofing to circumvent content-based packages

Abstract

Internet Service Providers (ISPs) are increasingly offering content-based packages to their clients. These packages offer access to a range of online content, such as Facebook, YouTube, Messenger, Zoom, and many other popular services, for a fixed price. This allows users to access all the content they want without worrying about data caps or overage charges. These packages are way cheaper than regular internet packages. Even some ISPs offer unlimited content-based packages for a low price. When using these packages, network traffic is continuously filtered by the ISP, and the user will be charged separately for using other services which are not included in the content-based package. Some internet users are using HTTP injector Software to bypass ISP's Network traffic filters and access other resources available on the internet using content-based package data quotes. This research aims to find an alternative method to bypass ISP's Network traffic filters without using an HTTP injector.