mitmproxy logo


An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers. (by mitmproxy)


Basic mitmproxy repo stats
5 days ago

mitmproxy/mitmproxy is an open source project licensed under MIT License which is an OSI approved license.

Mitmproxy Alternatives

Similar projects and alternatives to mitmproxy

  • GitHub repo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • GitHub repo react-native

    A framework for building native apps with React.

  • GitHub repo Elasticsearch

    Free and Open, Distributed, RESTful Search Engine

  • GitHub repo Ansible

    Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to cloud management, in a language that approaches plain English, using SSH, with no agents to install on remote systems.

  • GitHub repo moment

    Parse, validate, manipulate, and display dates in javascript.

  • GitHub repo Scrapy

    Scrapy, a fast high-level web crawling & scraping framework for Python.

  • GitHub repo Babel (Formerly 6to5)

    🐠 Babel is a compiler for writing next generation JavaScript.

  • GitHub repo jest

    Delightful JavaScript Testing.

  • GitHub repo Pandas

    Flexible and powerful data analysis / manipulation library for Python, providing labeled data structures similar to R data.frame objects, statistical functions, and much more

  • GitHub repo Symfony

    The Symfony PHP framework

  • GitHub repo mocha

    ☕️ simple, flexible, fun javascript test framework for node.js & the browser

  • GitHub repo NumPy

    The fundamental package for scientific computing with Python.

  • GitHub repo matplotlib

    matplotlib: plotting with Python

  • GitHub repo SaltStack

    Software to automate the management and configuration of any infrastructure or application at scale. Get access to the Salt software package repository here:

  • GitHub repo Sinatra

    Classy web-development dressed in a DSL (official / canonical repo)

  • GitHub repo faker

    A library for generating fake data such as names, addresses, and phone numbers. (by faker-ruby)

  • GitHub repo Zed

    The OWASP ZAP core project

  • GitHub repo pytest

    The pytest framework makes it easy to write small tests, yet scales to support complex functional testing

  • GitHub repo phpMyAdmin

    A web interface for MySQL and MariaDB

  • GitHub repo JRuby

    JRuby, an implementation of Ruby on the JVM

NOTE: The number of mentions on this list indicates mentions on common posts. Hence, a higher number means a better mitmproxy alternative or higher similarity.


Posts where mitmproxy has been mentioned. We have used some of these posts to build our list of alternatives and similar projects - the last one was on 2021-04-17.
  • Is it possible to see the network connections made by FF extensions as a PCAP export or network log or something? And if so, can I create rules to prevent conenctions by extensions to certain domains? | 2021-04-17
  • Make some requests go through VPN tunnel | 2021-04-05
    Create a second container with mitmproxy as Transparent Proxy that routes everything through the VPN Client container. If I use `network_mode: service:wireguard` in the docker-compose file, then I can't access the mitmproxy container from outside.
  • Mitmproxy – An Interactive HTTPS Proxy | 2021-04-02
  • [C++ or Qt lib] SSL transparent proxy (like: | 2021-03-14
    I was looking for a C++ (or Qt lib) SSL transparent proxy [just like, but in C++ (or Qt lib)].
  • Ultimate guide to HTTP Strict Transport Security (HSTS) | 2021-03-03
    3. Build the Docker image. It is based on the official Node.js image. It also contains mitmproxy to simulate the MITM router as well as a script to facilitate the SSLstrip attack.
  • What's the best book or other resource on webAPI pentesting?
    API testing has some interesting overlap with mobile pentesting too. You can proxy your phone with a tool like MITMProxy and look at the HTTP Method Requests going to the server from your device. If you're handy with Python MITMproxy has some extensibility capabilities and you could even get it to behave like a janky Burpsuite clone. If i'm not mistaken, projects like McBroken which find broken McDonalds Ice Cream Machines were only possible because Mobile application actions were sniffed and mapped to create the appropriate responses and aggregate the data necessary.
  • Fleeing WhatsApp for Privacy? Don't Turn to Telegram | 2021-02-22
    You can do the same thing for WhatsApp, and it has been done. It's not all that hard to analyze network traffic if you're somewhat tech-savvy. The additional TLS encryption layer can be stripped with a tool like mitmproxy and you will still see no plain-text message content after that (but probably some plain-text metadata). Of course truly verifying that it's the Signal protocol being used as opposed to something else encrypting or obscuring the message content is much harder than having a quick peek behind into the plain client-server communication data, but it is possible.
  • Massive funds stolen from BLOCKCHAIN wallet | 2021-02-20
    This type of attack is typically automated with tools such as:
  • 2021 Feb 15 Stickied 𝐇𝐄𝐋𝐏𝐃𝐄𝐒𝐊 thread - Boot problems? Display problems? Networking problems? Need ideas? Get help with these and other questions! 𝑳𝑶𝑶𝑲 𝑯𝑬𝑹𝑬 𝑭𝑰𝑹𝑺𝑻
    If your router supports it (unlikely), you could try to set your Pi as the gateway for all traffic from the target Pi, then use mitmproxy to invisibly proxy traffic. (Or just forward all traffic like a real gateway and use Wireshark.)
    where is the target domain you determined via the PiHole. (If you are stuck with NAT you might find this script useful. Although I haven't tested it extensively, it seems to work.)
  • I wrote a TUI that intercepts HTTP and HTTPS requests | 2021-02-09
  • How to redirect an url to another url
    I would look into something like Squid, mitmproxy or SSLsplit, depending on just what your needs are.
  • Hacktoberfest: 69 Beginner-Friendly Projects You Can Contribute To | 2020-09-29 An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.