Skip to content
HTTPS man in the middle
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.vscode
src
.gitignore
README.md
build.sh

README.md

mitm proxy

Introduction

本项目实现了一个 Man-in-the-middle 代理服务器。支持 HTTP 和 HTTPS 抓包。

It is a Man-in-the-middle proxy server, supports to capture HTTP/HTTPS request and response.

How

对于 HTTP,直接修改头部,并转发请求。

而对于 HTTPS,则是在 CONNECT 请求所建立的 TCP 隧道中,又插入了一个 TLS 服务,并由该 TLS 服务先解析成明文,再进行 TLS 请求。该插入的 TLS 服务器需要为每个域名实时签发证书,故浏览器会提示证书错误。

详细原理介绍

详细原理在我的博客文章:实现基于 HTTPS 代理的中间人攻击

You can’t perform that action at this time.