-
mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Another useful tool I have used in the past in windows is Nektra Deviare for function hooking. This is similar to the old Microsoft Detours framework, in that one can dynamically patch code in the running binary. I have used this to grab raw keys.
https://www.nektra.com/products/deviare-api-hook-windows/
Not sure about the non-security expert bit but I've done stuff[0] similar to this for iOS using Frida[1] which supports macOS too. For apps that use unpinned certificates and the builtin networking libraries(NSURLSession et.al.) you can directly use mimtproxy[2] or Charles[3]
0: https://hugotunius.se/2020/08/07/stealing-tls-sessions-keys-...
1: https://frida.re/
2: https://mitmproxy.org/
3: https://www.charlesproxy.com/