Secret substitution should work when HTTPS traffic is tunneled through SOCKS proxies.
Today the TCP proxy would only see the SOCKS handshake, then the inner TLS stream remains opaque, so $MSB_... placeholders are not replaced.
Fix: detect SOCKS4/SOCKS5 handshakes, establish the tunnel, then run the existing TLS MITM + secret substitution flow over the tunneled stream.
Secret substitution should work when HTTPS traffic is tunneled through SOCKS proxies.
Today the TCP proxy would only see the SOCKS handshake, then the inner TLS stream remains opaque, so
$MSB_...placeholders are not replaced.Fix: detect SOCKS4/SOCKS5 handshakes, establish the tunnel, then run the existing TLS MITM + secret substitution flow over the tunneled stream.