HTTP Toolkit is a tool for debugging, testing and building with HTTP(S) on Windows, Linux & Mac.
You can use it to intercept, inspect & rewrite HTTP(S) traffic, from everything to anywhere. Explore Android app traffic, mock requests between your microservices, and x-ray your browser traffic to debug, understand and test anything.
With HTTP Toolkit, you can:
- Instantly intercept browsers, most backend & scripting languages (from Node.js to PHP), Android devices, Electron apps and more with one-click setup.
- Collect interesting traffic without intercepting everything on your whole machine, so there's no extra noise and no side-effects - just the traffic you care about.
- Inspect the full headers & body for every request & response from every client, to immediately see what's really being sent & received on the wire.
- Easily understand collected HTTP traffic, with inline documentation for all standard headers & responses statuses, plus body decoding, highlighting, folding, and other nicities, powered by the same internals as Visual Studio Code.
- Quickly find the data you care about, with exchanges highlighted by client and tagged by category (images, JSON responses, errors), and free-text search across all request & response metadata.
- Breakpoint live requests or responses, to rewrite HTTP traffic on the fly.
- Mock endpoints or servers, with a flexible rule configurations to match and handle requests automatically, to send responses, inject failures & timeouts, or transparently redirect requests elsewhere.
- Intercept any HTTP traffic: HTTP Tookit is a transparent HTTP proxy, and can intercept plain HTTP, encrypted HTTP(S), HTTP/2, proxy requests, direct requests, manually redirected packets, you name it, all on one port.
Send your feedback
HTTP Toolkit is driven by its community of users and their feedback. Have some ideas, problems or questions about HTTP Toolkit? Post an issue in this repo. If that's too public, you can also send a message directly.
Would you like to help design the perfect HTTP debugging tool? Take a look through the open issues, and add a
Want to go further, to build & contribute the HTTP Toolkit features & fixes you're looking for yourself? HTTP Toolkit is 100% open source, so you can help shape it directly! All contributors get free HTTP Toolkit Pro (more background on this over here).
That includes code contributions, but documentation improvements, article & blog posts elsewhere about the project, bug & security reports, and anything else that helps drive HTTP Toolkit forwards. The goal is to reward anything that helps drive HTTP Toolkit development or bring it to new people. To claim your Pro account, get in touch once you've made your contribution, with the email you'd like associated with your account. Feel free to get in touch with any other questions about this too.
Where to start
This github organization contains the entire project.
Yes, even the account management servers, even the paid features, everything. All of that is open source, licensed as a mixture of copyleft AGPL (for the HTTP Toolkit-specific components, ensuring all direct derivative projects are open-source too) and permissive Apache-2/MIT licenses (for all the general-purpose reusable libraries).
The main repos you might be interested in are:
- httptoolkit.tech - the HTTP Toolkit website, including the marketing pages, the blog, and the docs.
- HTTP Toolkit UI - the core of the product, a TypeScript + React app that powers most of the functionality you use, except for things that can't be done in a web page (i.e. starting a proxy, and setting up client interception).
- HTTP Toolkit Server - the backend of the product, a TypeScript + node.js server that does the things the UI can't do: starting a proxy, and setting up client interception.
- Mockttp - the HTTP(S) proxy itself, and all low-level logic around that, as a standalone TypeScript library. Used in HTTP Toolkit for traffic interception, but also usable standalone as a testing tool, or as a programmatically controllable intercepting HTTP(S) proxy.
- HTTP Toolkit for Android - the Android app, a native Kotlin + Java app that manages certificate trust & enforces HTTP interception on Android devices.
- HTTP Toolkit Desktop - a TypeScript + Electron wrapper, which combines the UI & the server and builds convenient per-platform installers.
Each repo has its own readme explaining how to get set up and outlining how the component works. Check out the issues in this repo for ideas, feel free to ask questions, and dive in!