1 of 1 people found this helpful
I downloaded the CCProxy and did a bunch of packet captures on traffic coming through CCProxy. It does not add any custom HTTP header or other traces that could be used to validate whether the traffic comes from the machine itself of from the proxy service. Therefore you can't detect it.
Thank you for tests Andre.
I will try to locate this source by MS SCCM and running processes :-(
Have a nice day.
I think that makes sense. The good thing is that the CCProxy does not seem to be a tool like "Tor" to avoid filtering and bypass the security policy.
On a similar subject, how would you go to log the list of all downloaded files on a daily basis and maybe, generate a mail report/list? I used that before on another system to check .exe file transfert to stations to see if anything special was appening...