├── web
├── client
│ ├── .eslintignore
│ ├── src
│ │ ├── react-app-env.d.ts
│ │ ├── setupTests.ts
│ │ ├── App.test.tsx
│ │ ├── reportWebVitals.ts
│ │ ├── index.tsx
│ │ ├── lib
│ │ │ ├── connection.ts
│ │ │ ├── utils.ts
│ │ │ ├── message.ts
│ │ │ └── flow.ts
│ │ ├── components
│ │ │ ├── FlowPreview.tsx
│ │ │ ├── BreakPoint.tsx
│ │ │ ├── EditFlow.tsx
│ │ │ └── ViewFlow.tsx
│ │ ├── App.css
│ │ └── App.tsx
│ ├── build
│ │ ├── robots.txt
│ │ ├── favicon.ico
│ │ ├── logo192.png
│ │ ├── logo512.png
│ │ ├── manifest.json
│ │ ├── asset-manifest.json
│ │ ├── static
│ │ │ ├── js
│ │ │ │ ├── 2.948b8343.chunk.js.LICENSE.txt
│ │ │ │ ├── runtime-main.476c72c1.js
│ │ │ │ ├── 3.fdc4294f.chunk.js
│ │ │ │ ├── 3.fdc4294f.chunk.js.map
│ │ │ │ └── runtime-main.476c72c1.js.map
│ │ │ └── css
│ │ │ │ ├── main.9aa5bcb2.chunk.css
│ │ │ │ └── main.9aa5bcb2.chunk.css.map
│ │ └── index.html
│ ├── public
│ │ ├── robots.txt
│ │ ├── favicon.ico
│ │ ├── logo192.png
│ │ ├── logo512.png
│ │ ├── manifest.json
│ │ └── index.html
│ ├── .gitignore
│ ├── tsconfig.json
│ ├── .eslintrc.yml
│ ├── package.json
│ └── README.md
├── web.go
├── conn.go
└── message.go
├── go-mitmproxy
├── mitmproxy.go
├── addon
├── decoder.go
├── mapper_test.go
├── log.go
├── dumper.go
└── mapper.go
├── go.mod
├── examples
├── http-add-header
│ └── main.go
└── change-html
│ └── main.go
├── cert
├── cert_test.go
└── cert.go
├── LICENSE
├── cmd
├── dummycert
│ └── main.go
└── mitmproxy
│ └── main.go
├── proxy
├── websocket.go
├── addon.go
├── flowencoding.go
├── helper.go
├── flow.go
├── interceptor.go
├── proxy.go
├── connection.go
└── proxy_test.go
├── go.sum
└── README.md
/web/client/.eslintignore:
--------------------------------------------------------------------------------
1 | build
2 |
--------------------------------------------------------------------------------
/web/client/src/react-app-env.d.ts:
--------------------------------------------------------------------------------
1 | ///
2 |
--------------------------------------------------------------------------------
/go-mitmproxy:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/go-mitmproxy
--------------------------------------------------------------------------------
/web/client/build/robots.txt:
--------------------------------------------------------------------------------
1 | # https://www.robotstxt.org/robotstxt.html
2 | User-agent: *
3 | Disallow:
4 |
--------------------------------------------------------------------------------
/web/client/public/robots.txt:
--------------------------------------------------------------------------------
1 | # https://www.robotstxt.org/robotstxt.html
2 | User-agent: *
3 | Disallow:
4 |
--------------------------------------------------------------------------------
/mitmproxy.go:
--------------------------------------------------------------------------------
1 | // Package mitmproxy implements a man-in-the-middle proxy (forward proxy).
2 | package mitmproxy
3 |
--------------------------------------------------------------------------------
/web/client/build/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/web/client/build/favicon.ico
--------------------------------------------------------------------------------
/web/client/build/logo192.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/web/client/build/logo192.png
--------------------------------------------------------------------------------
/web/client/build/logo512.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/web/client/build/logo512.png
--------------------------------------------------------------------------------
/web/client/public/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/web/client/public/favicon.ico
--------------------------------------------------------------------------------
/web/client/public/logo192.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/web/client/public/logo192.png
--------------------------------------------------------------------------------
/web/client/public/logo512.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/kardianos/mitmproxy/HEAD/web/client/public/logo512.png
--------------------------------------------------------------------------------
/web/client/src/setupTests.ts:
--------------------------------------------------------------------------------
1 | // jest-dom adds custom jest matchers for asserting on DOM nodes.
2 | // allows you to do things like:
3 | // expect(element).toHaveTextContent(/react/i)
4 | // learn more: https://github.com/testing-library/jest-dom
5 | import '@testing-library/jest-dom'
6 |
--------------------------------------------------------------------------------
/addon/decoder.go:
--------------------------------------------------------------------------------
1 | package addon
2 |
3 | import "github.com/kardianos/mitmproxy/proxy"
4 |
5 | // decode content-encoding then respond to client
6 |
7 | type Decoder struct {
8 | proxy.BaseAddon
9 | }
10 |
11 | func (d *Decoder) Response(f *proxy.Flow) {
12 | f.Response.ReplaceToDecodedBody()
13 | }
14 |
--------------------------------------------------------------------------------
/web/client/src/App.test.tsx:
--------------------------------------------------------------------------------
1 | import React from 'react'
2 | import { render, screen } from '@testing-library/react'
3 | import App from './App'
4 |
5 | test('renders learn react link', () => {
6 | render()
7 | const linkElement = screen.getByText(/learn react/i)
8 | expect(linkElement).toBeInTheDocument()
9 | })
10 |
--------------------------------------------------------------------------------
/web/client/.gitignore:
--------------------------------------------------------------------------------
1 | # See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
2 |
3 | # dependencies
4 | /node_modules
5 | /.pnp
6 | .pnp.js
7 |
8 | # testing
9 | /coverage
10 |
11 | # production
12 | # /build
13 |
14 | # misc
15 | .DS_Store
16 | .env.local
17 | .env.development.local
18 | .env.test.local
19 | .env.production.local
20 |
21 | npm-debug.log*
22 | yarn-debug.log*
23 | yarn-error.log*
24 |
25 | package-lock.json
26 |
--------------------------------------------------------------------------------
/go.mod:
--------------------------------------------------------------------------------
1 | module github.com/kardianos/mitmproxy
2 |
3 | go 1.18
4 |
5 | require (
6 | github.com/andybalholm/brotli v1.0.4
7 | github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da
8 | github.com/gorilla/websocket v1.5.0
9 | github.com/satori/go.uuid v1.2.0
10 | github.com/sirupsen/logrus v1.8.1
11 | )
12 |
13 | require (
14 | golang.org/x/sys v0.0.0-20220624220833-87e55d714810 // indirect
15 | gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
16 | )
17 |
--------------------------------------------------------------------------------
/web/client/src/reportWebVitals.ts:
--------------------------------------------------------------------------------
1 | import { ReportHandler } from 'web-vitals'
2 |
3 | const reportWebVitals = (onPerfEntry?: ReportHandler) => {
4 | if (onPerfEntry && onPerfEntry instanceof Function) {
5 | import('web-vitals').then(({ getCLS, getFID, getFCP, getLCP, getTTFB }) => {
6 | getCLS(onPerfEntry)
7 | getFID(onPerfEntry)
8 | getFCP(onPerfEntry)
9 | getLCP(onPerfEntry)
10 | getTTFB(onPerfEntry)
11 | })
12 | }
13 | }
14 |
15 | export default reportWebVitals
16 |
--------------------------------------------------------------------------------
/web/client/src/index.tsx:
--------------------------------------------------------------------------------
1 | import React from 'react'
2 | import ReactDOM from 'react-dom'
3 | import 'bootstrap/dist/css/bootstrap.min.css'
4 | import App from './App'
5 | import reportWebVitals from './reportWebVitals'
6 |
7 | ReactDOM.render(
8 |
9 |
10 | ,
11 | document.getElementById('root')
12 | )
13 |
14 | // If you want to start measuring performance in your app, pass a function
15 | // to log results (for example: reportWebVitals(console.log))
16 | // or send to an analytics endpoint. Learn more: https://bit.ly/CRA-vitals
17 | reportWebVitals()
18 |
--------------------------------------------------------------------------------
/web/client/build/manifest.json:
--------------------------------------------------------------------------------
1 | {
2 | "short_name": "React App",
3 | "name": "Create React App Sample",
4 | "icons": [
5 | {
6 | "src": "favicon.ico",
7 | "sizes": "64x64 32x32 24x24 16x16",
8 | "type": "image/x-icon"
9 | },
10 | {
11 | "src": "logo192.png",
12 | "type": "image/png",
13 | "sizes": "192x192"
14 | },
15 | {
16 | "src": "logo512.png",
17 | "type": "image/png",
18 | "sizes": "512x512"
19 | }
20 | ],
21 | "start_url": ".",
22 | "display": "standalone",
23 | "theme_color": "#000000",
24 | "background_color": "#ffffff"
25 | }
26 |
--------------------------------------------------------------------------------
/web/client/public/manifest.json:
--------------------------------------------------------------------------------
1 | {
2 | "short_name": "React App",
3 | "name": "Create React App Sample",
4 | "icons": [
5 | {
6 | "src": "favicon.ico",
7 | "sizes": "64x64 32x32 24x24 16x16",
8 | "type": "image/x-icon"
9 | },
10 | {
11 | "src": "logo192.png",
12 | "type": "image/png",
13 | "sizes": "192x192"
14 | },
15 | {
16 | "src": "logo512.png",
17 | "type": "image/png",
18 | "sizes": "512x512"
19 | }
20 | ],
21 | "start_url": ".",
22 | "display": "standalone",
23 | "theme_color": "#000000",
24 | "background_color": "#ffffff"
25 | }
26 |
--------------------------------------------------------------------------------
/web/client/src/lib/connection.ts:
--------------------------------------------------------------------------------
1 | export interface IConnection {
2 | clientConn: {
3 | id: string
4 | tls: boolean
5 | address: string
6 | }
7 | serverConn: {
8 | id: string
9 | address: string
10 | peername: string
11 | }
12 | }
13 |
14 | export class ConnectionManager {
15 | private _map: Map
16 |
17 | constructor() {
18 | this._map = new Map()
19 | }
20 |
21 | get(id: string) {
22 | return this._map.get(id)
23 | }
24 |
25 | add(id: string, conn: IConnection) {
26 | this._map.set(id, conn)
27 | }
28 |
29 | delete(id: string) {
30 | this._map.delete(id)
31 | }
32 | }
33 |
--------------------------------------------------------------------------------
/web/client/tsconfig.json:
--------------------------------------------------------------------------------
1 | {
2 | "compilerOptions": {
3 | "target": "es5",
4 | "lib": [
5 | "dom",
6 | "dom.iterable",
7 | "esnext"
8 | ],
9 | "allowJs": true,
10 | "skipLibCheck": true,
11 | "esModuleInterop": true,
12 | "allowSyntheticDefaultImports": true,
13 | "strict": true,
14 | "forceConsistentCasingInFileNames": true,
15 | "noFallthroughCasesInSwitch": true,
16 | "module": "esnext",
17 | "moduleResolution": "node",
18 | "resolveJsonModule": true,
19 | "isolatedModules": true,
20 | "noEmit": true,
21 | "jsx": "react-jsx"
22 | },
23 | "include": [
24 | "src"
25 | ]
26 | }
27 |
--------------------------------------------------------------------------------
/examples/http-add-header/main.go:
--------------------------------------------------------------------------------
1 | package main
2 |
3 | import (
4 | "strconv"
5 |
6 | log "github.com/sirupsen/logrus"
7 |
8 | "github.com/kardianos/mitmproxy/proxy"
9 | )
10 |
11 | type AddHeader struct {
12 | proxy.BaseAddon
13 | count int
14 | }
15 |
16 | func (a *AddHeader) Responseheaders(f *proxy.Flow) {
17 | a.count += 1
18 | f.Response.Header.Add("x-count", strconv.Itoa(a.count))
19 | }
20 |
21 | func main() {
22 | opts := &proxy.Options{
23 | Addr: ":9080",
24 | StreamLargeBodies: 1024 * 1024 * 5,
25 | }
26 |
27 | p, err := proxy.NewProxy(opts)
28 | if err != nil {
29 | log.Fatal(err)
30 | }
31 |
32 | p.AddAddon(&AddHeader{})
33 |
34 | log.Fatal(p.Start())
35 | }
36 |
--------------------------------------------------------------------------------
/web/client/.eslintrc.yml:
--------------------------------------------------------------------------------
1 | env:
2 | browser: true
3 | es2021: true
4 | extends:
5 | - 'eslint:recommended'
6 | - 'plugin:react/recommended'
7 | - 'plugin:@typescript-eslint/recommended'
8 | parser: '@typescript-eslint/parser'
9 | parserOptions:
10 | ecmaFeatures:
11 | jsx: true
12 | ecmaVersion: 12
13 | sourceType: module
14 | plugins:
15 | - react
16 | - '@typescript-eslint'
17 | rules:
18 | indent:
19 | - error
20 | - 2
21 | linebreak-style:
22 | - error
23 | - unix
24 | quotes:
25 | - error
26 | - single
27 | semi:
28 | - error
29 | - never
30 | '@typescript-eslint/explicit-module-boundary-types':
31 | - 0
32 | '@typescript-eslint/no-explicit-any':
33 | - 0
34 |
--------------------------------------------------------------------------------
/addon/mapper_test.go:
--------------------------------------------------------------------------------
1 | package addon
2 |
3 | import "testing"
4 |
5 | func TestParser(t *testing.T) {
6 | content := `
7 | GET /index.html
8 | Host: www.baidu.com
9 | Accept: */*
10 |
11 | hello world
12 |
13 | HTTP/1.1 200
14 |
15 | ok
16 | `
17 | p, err := newMapperParserFromString(content)
18 | if err != nil {
19 | t.Fatal(err)
20 | }
21 | f, err := p.parse()
22 | if err != nil {
23 | t.Fatal(err)
24 | }
25 |
26 | if f.Request.Method != "GET" {
27 | t.Fatal("request method error")
28 | }
29 | if f.Request.URL.String() != "http://www.baidu.com/index.html" {
30 | t.Fatal("request url error")
31 | }
32 | if f.Response.StatusCode != 200 {
33 | t.Fatal("response status code error")
34 | }
35 | if string(f.Response.Body) != "ok" {
36 | t.Fatal("response body error")
37 | }
38 | if f.Response.Header.Get("Content-Length") != "2" {
39 | t.Fatal("response header content-length error")
40 | }
41 | }
42 |
--------------------------------------------------------------------------------
/cert/cert_test.go:
--------------------------------------------------------------------------------
1 | package cert
2 |
3 | import (
4 | "bytes"
5 | "io/ioutil"
6 | "reflect"
7 | "testing"
8 | )
9 |
10 | func TestGetStorePath(t *testing.T) {
11 | l, err := NewPathLoader("")
12 | if err != nil {
13 | t.Fatal(err)
14 | }
15 | if l.StorePath == "" {
16 | t.Fatal("should have path")
17 | }
18 | }
19 |
20 | func TestNewCA(t *testing.T) {
21 | l, err := NewPathLoader("")
22 | if err != nil {
23 | t.Fatal(err)
24 | }
25 | ca, err := New(l)
26 | if err != nil {
27 | t.Fatal(err)
28 | }
29 |
30 | data := make([]byte, 0)
31 | buf := bytes.NewBuffer(data)
32 |
33 | err = l.saveTo(buf, &ca.PrivateKey, &ca.RootCert)
34 | if err != nil {
35 | t.Fatal(err)
36 | }
37 |
38 | fileContent, err := ioutil.ReadFile(l.caFile())
39 | if err != nil {
40 | t.Fatal(err)
41 | }
42 |
43 | if !reflect.DeepEqual(fileContent, buf.Bytes()) {
44 | t.Fatal("pem content should equal")
45 | }
46 | }
47 |
--------------------------------------------------------------------------------
/examples/change-html/main.go:
--------------------------------------------------------------------------------
1 | package main
2 |
3 | import (
4 | "regexp"
5 | "strconv"
6 | "strings"
7 |
8 | "github.com/kardianos/mitmproxy/proxy"
9 | log "github.com/sirupsen/logrus"
10 | )
11 |
12 | var titleRegexp = regexp.MustCompile("()(.*?)()")
13 |
14 | type ChangeHtml struct {
15 | proxy.BaseAddon
16 | }
17 |
18 | func (c *ChangeHtml) Response(f *proxy.Flow) {
19 | contentType := f.Response.Header.Get("Content-Type")
20 | if !strings.Contains(contentType, "text/html") {
21 | return
22 | }
23 |
24 | // change html end with: " - go-mitmproxy"
25 | f.Response.ReplaceToDecodedBody()
26 | f.Response.Body = titleRegexp.ReplaceAll(f.Response.Body, []byte("${1}${2} - go-mitmproxy${3}"))
27 | f.Response.Header.Set("Content-Length", strconv.Itoa(len(f.Response.Body)))
28 | }
29 |
30 | func main() {
31 | opts := &proxy.Options{
32 | Addr: ":9080",
33 | StreamLargeBodies: 1024 * 1024 * 5,
34 | }
35 |
36 | p, err := proxy.NewProxy(opts)
37 | if err != nil {
38 | log.Fatal(err)
39 | }
40 |
41 | p.AddAddon(&ChangeHtml{})
42 |
43 | log.Fatal(p.Start())
44 | }
45 |
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | MIT License
2 |
3 | Copyright (c) 2020 liqiang
4 |
5 | Permission is hereby granted, free of charge, to any person obtaining a copy
6 | of this software and associated documentation files (the "Software"), to deal
7 | in the Software without restriction, including without limitation the rights
8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 |
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 |
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 |
--------------------------------------------------------------------------------
/web/client/build/asset-manifest.json:
--------------------------------------------------------------------------------
1 | {
2 | "files": {
3 | "main.css": "/static/css/main.9aa5bcb2.chunk.css",
4 | "main.js": "/static/js/main.2abbef8f.chunk.js",
5 | "main.js.map": "/static/js/main.2abbef8f.chunk.js.map",
6 | "runtime-main.js": "/static/js/runtime-main.476c72c1.js",
7 | "runtime-main.js.map": "/static/js/runtime-main.476c72c1.js.map",
8 | "static/css/2.4659568d.chunk.css": "/static/css/2.4659568d.chunk.css",
9 | "static/js/2.948b8343.chunk.js": "/static/js/2.948b8343.chunk.js",
10 | "static/js/2.948b8343.chunk.js.map": "/static/js/2.948b8343.chunk.js.map",
11 | "static/js/3.fdc4294f.chunk.js": "/static/js/3.fdc4294f.chunk.js",
12 | "static/js/3.fdc4294f.chunk.js.map": "/static/js/3.fdc4294f.chunk.js.map",
13 | "index.html": "/index.html",
14 | "static/css/2.4659568d.chunk.css.map": "/static/css/2.4659568d.chunk.css.map",
15 | "static/css/main.9aa5bcb2.chunk.css.map": "/static/css/main.9aa5bcb2.chunk.css.map",
16 | "static/js/2.948b8343.chunk.js.LICENSE.txt": "/static/js/2.948b8343.chunk.js.LICENSE.txt"
17 | },
18 | "entrypoints": [
19 | "static/js/runtime-main.476c72c1.js",
20 | "static/css/2.4659568d.chunk.css",
21 | "static/js/2.948b8343.chunk.js",
22 | "static/css/main.9aa5bcb2.chunk.css",
23 | "static/js/main.2abbef8f.chunk.js"
24 | ]
25 | }
--------------------------------------------------------------------------------
/web/client/src/components/FlowPreview.tsx:
--------------------------------------------------------------------------------
1 | import React from 'react'
2 | import { shallowEqual } from '../lib/utils'
3 | import type { IFlowPreview } from '../lib/flow'
4 |
5 | interface IProps {
6 | flow: IFlowPreview
7 | isSelected: boolean
8 | onShowDetail: () => void
9 | }
10 |
11 | class FlowPreview extends React.Component<IProps> {
12 | shouldComponentUpdate(nextProps: IProps) {
13 | if (nextProps.isSelected === this.props.isSelected && shallowEqual(nextProps.flow, this.props.flow)) {
14 | return false
15 | }
16 | return true
17 | }
18 |
19 | render() {
20 | const fp = this.props.flow
21 |
22 | const classNames = []
23 | if (this.props.isSelected) classNames.push('tr-selected')
24 | if (fp.waitIntercept) classNames.push('tr-wait-intercept')
25 |
26 | return (
27 | <tr className={classNames.length ? classNames.join(' ') : undefined}
28 | onClick={() => {
29 | this.props.onShowDetail()
30 | }}
31 | >
32 | <td>{fp.no}</td>
33 | <td>{fp.method}</td>
34 | <td>{fp.host}</td>
35 | <td>{fp.path}</td>
36 | <td>{fp.contentType}</td>
37 | <td>{fp.statusCode}</td>
38 | <td>{fp.size}</td>
39 | <td>{fp.costTime}</td>
40 | </tr>
41 | )
42 | }
43 | }
44 |
45 | export default FlowPreview
46 |
--------------------------------------------------------------------------------
/web/client/build/static/js/2.948b8343.chunk.js.LICENSE.txt:
--------------------------------------------------------------------------------
1 | /*
2 | object-assign
3 | (c) Sindre Sorhus
4 | @license MIT
5 | */
6 |
7 | /*!
8 | Copyright (c) 2018 Jed Watson.
9 | Licensed under the MIT License (MIT), see
10 | http://jedwatson.github.io/classnames
11 | */
12 |
13 | /** @license React v0.20.2
14 | * scheduler.production.min.js
15 | *
16 | * Copyright (c) Facebook, Inc. and its affiliates.
17 | *
18 | * This source code is licensed under the MIT license found in the
19 | * LICENSE file in the root directory of this source tree.
20 | */
21 |
22 | /** @license React v17.0.2
23 | * react-dom.production.min.js
24 | *
25 | * Copyright (c) Facebook, Inc. and its affiliates.
26 | *
27 | * This source code is licensed under the MIT license found in the
28 | * LICENSE file in the root directory of this source tree.
29 | */
30 |
31 | /** @license React v17.0.2
32 | * react-jsx-runtime.production.min.js
33 | *
34 | * Copyright (c) Facebook, Inc. and its affiliates.
35 | *
36 | * This source code is licensed under the MIT license found in the
37 | * LICENSE file in the root directory of this source tree.
38 | */
39 |
40 | /** @license React v17.0.2
41 | * react.production.min.js
42 | *
43 | * Copyright (c) Facebook, Inc. and its affiliates.
44 | *
45 | * This source code is licensed under the MIT license found in the
46 | * LICENSE file in the root directory of this source tree.
47 | */
48 |
--------------------------------------------------------------------------------
/web/client/package.json:
--------------------------------------------------------------------------------
1 | {
2 | "name": "mitmproxy-client",
3 | "version": "0.1.0",
4 | "private": true,
5 | "dependencies": {
6 | "@testing-library/jest-dom": "^5.15.1",
7 | "@testing-library/react": "^12.1.2",
8 | "@testing-library/user-event": "^13.5.0",
9 | "@types/jest": "^27.0.3",
10 | "@types/node": "^16.11.11",
11 | "@types/react": "^17.0.37",
12 | "@types/react-dom": "^17.0.11",
13 | "bootstrap": "^5.1.3",
14 | "copy-to-clipboard": "^3.3.1",
15 | "fetch-to-curl": "^0.5.2",
16 | "react": "^17.0.2",
17 | "react-bootstrap": "^2.0.3",
18 | "react-dom": "^17.0.2",
19 | "react-json-pretty": "^2.2.0",
20 | "react-scripts": "4.0.3",
21 | "typescript": "^4.5.2",
22 | "web-vitals": "^2.1.2"
23 | },
24 | "scripts": {
25 | "start": "react-scripts start",
26 | "build": "react-scripts build",
27 | "test": "react-scripts test",
28 | "eject": "react-scripts eject"
29 | },
30 | "eslintConfig": {
31 | "extends": [
32 | "react-app",
33 | "react-app/jest"
34 | ]
35 | },
36 | "browserslist": {
37 | "production": [
38 | ">0.2%",
39 | "not dead",
40 | "not op_mini all"
41 | ],
42 | "development": [
43 | "last 1 chrome version",
44 | "last 1 firefox version",
45 | "last 1 safari version"
46 | ]
47 | },
48 | "devDependencies": {
49 | "@typescript-eslint/eslint-plugin": "^4.33.0",
50 | "@typescript-eslint/parser": "^4.33.0",
51 | "eslint": "^7.32.0",
52 | "eslint-plugin-react": "^7.27.1"
53 | }
54 | }
55 |
--------------------------------------------------------------------------------
/cmd/dummycert/main.go:
--------------------------------------------------------------------------------
1 | package main
2 |
3 | import (
4 | "crypto/x509"
5 | "encoding/pem"
6 | "flag"
7 | "fmt"
8 | "os"
9 |
10 | "github.com/kardianos/mitmproxy/cert"
11 | log "github.com/sirupsen/logrus"
12 | )
13 |
14 | // 生成假的/用于测试的服务器证书
15 |
16 | type Config struct {
17 | commonName string
18 | }
19 |
20 | func loadConfig() *Config {
21 | config := new(Config)
22 | flag.StringVar(&config.commonName, "commonName", "", "server commonName")
23 | flag.Parse()
24 | return config
25 | }
26 |
27 | func main() {
28 | log.SetLevel(log.InfoLevel)
29 | log.SetReportCaller(false)
30 | log.SetOutput(os.Stdout)
31 | log.SetFormatter(&log.TextFormatter{
32 | FullTimestamp: true,
33 | })
34 |
35 | config := loadConfig()
36 | if config.commonName == "" {
37 | log.Fatal("commonName required")
38 | }
39 |
40 | l := &cert.MemoryLoader{}
41 | ca, err := cert.New(l)
42 | if err != nil {
43 | panic(err)
44 | }
45 |
46 | cert, err := ca.GenerateCert(config.commonName)
47 | if err != nil {
48 | panic(err)
49 | }
50 |
51 | os.Stdout.WriteString(fmt.Sprintf("%v-cert.pem\n", config.commonName))
52 | err = pem.Encode(os.Stdout, &pem.Block{Type: "CERTIFICATE", Bytes: cert.Certificate[0]})
53 | if err != nil {
54 | panic(err)
55 | }
56 | os.Stdout.WriteString(fmt.Sprintf("\n%v-key.pem\n", config.commonName))
57 |
58 | keyBytes, err := x509.MarshalPKCS8PrivateKey(&ca.PrivateKey)
59 | if err != nil {
60 | panic(err)
61 | }
62 | err = pem.Encode(os.Stdout, &pem.Block{Type: "PRIVATE KEY", Bytes: keyBytes})
63 | if err != nil {
64 | panic(err)
65 | }
66 | }
67 |
--------------------------------------------------------------------------------
/proxy/websocket.go:
--------------------------------------------------------------------------------
1 | package proxy
2 |
3 | import (
4 | "crypto/tls"
5 | "net"
6 | "net/http"
7 | "net/http/httputil"
8 | "strings"
9 |
10 | log "github.com/sirupsen/logrus"
11 | )
12 |
13 | // Currently only forwarding websocket flow.
14 |
15 | type webSocket struct{}
16 |
17 | var defaultWebSocket webSocket
18 |
19 | func (s *webSocket) ws(conn net.Conn, host string) {
20 | log := log.WithField("in", "webSocket.ws").WithField("host", host)
21 |
22 | defer conn.Close()
23 | remoteConn, err := net.Dial("tcp", host)
24 | if err != nil {
25 | logErr(log, err)
26 | return
27 | }
28 | defer remoteConn.Close()
29 | transfer(log, conn, remoteConn)
30 | }
31 |
32 | func (s *webSocket) wss(res http.ResponseWriter, req *http.Request) {
33 | log := log.WithField("in", "webSocket.wss").WithField("host", req.Host)
34 |
35 | upgradeBuf, err := httputil.DumpRequest(req, false)
36 | if err != nil {
37 | log.Errorf("DumpRequest: %v\n", err)
38 | res.WriteHeader(502)
39 | return
40 | }
41 |
42 | cconn, _, err := res.(http.Hijacker).Hijack()
43 | if err != nil {
44 | log.Errorf("Hijack: %v\n", err)
45 | res.WriteHeader(502)
46 | return
47 | }
48 | defer cconn.Close()
49 |
50 | host := req.Host
51 | if !strings.Contains(host, ":") {
52 | host = host + ":443"
53 | }
54 | conn, err := tls.Dial("tcp", host, nil)
55 | if err != nil {
56 | log.Errorf("tls.Dial: %v\n", err)
57 | return
58 | }
59 | defer conn.Close()
60 |
61 | _, err = conn.Write(upgradeBuf)
62 | if err != nil {
63 | log.Errorf("wss upgrade: %v\n", err)
64 | return
65 | }
66 | transfer(log, conn, cconn)
67 | }
68 |
--------------------------------------------------------------------------------
/addon/log.go:
--------------------------------------------------------------------------------
1 | package addon
2 |
3 | import (
4 | "time"
5 |
6 | "github.com/kardianos/mitmproxy/proxy"
7 |
8 | log "github.com/sirupsen/logrus"
9 | )
10 |
11 | // LogAddon log connection and flow
12 | type LogAddon struct {
13 | proxy.BaseAddon
14 | }
15 |
16 | func (addon *LogAddon) ClientConnected(client *proxy.ClientConn) {
17 | log.Infof("%v client connect\n", client.Conn.RemoteAddr())
18 | }
19 |
20 | func (addon *LogAddon) ClientDisconnected(client *proxy.ClientConn) {
21 | log.Infof("%v client disconnect\n", client.Conn.RemoteAddr())
22 | }
23 |
24 | func (addon *LogAddon) ServerConnected(connCtx *proxy.ConnContext) {
25 | log.Infof("%v server connect %v (%v->%v)\n", connCtx.ClientConn.Conn.RemoteAddr(), connCtx.ServerConn.Address, connCtx.ServerConn.Conn.LocalAddr(), connCtx.ServerConn.Conn.RemoteAddr())
26 | }
27 |
28 | func (addon *LogAddon) ServerDisconnected(connCtx *proxy.ConnContext) {
29 | log.Infof("%v server disconnect %v (%v->%v)\n", connCtx.ClientConn.Conn.RemoteAddr(), connCtx.ServerConn.Address, connCtx.ServerConn.Conn.LocalAddr(), connCtx.ServerConn.Conn.RemoteAddr())
30 | }
31 |
32 | func (addon *LogAddon) Requestheaders(f *proxy.Flow) {
33 | start := time.Now()
34 | go func() {
35 | <-f.Done()
36 | var StatusCode int
37 | if f.Response != nil {
38 | StatusCode = f.Response.StatusCode
39 | }
40 | var contentLen int
41 | if f.Response != nil && f.Response.Body != nil {
42 | contentLen = len(f.Response.Body)
43 | }
44 | log.Infof("%v %v %v %v %v - %v ms\n", f.ConnContext.ClientConn.Conn.RemoteAddr(), f.Request.Method, f.Request.URL.String(), StatusCode, contentLen, time.Since(start).Milliseconds())
45 | }()
46 | }
47 |
--------------------------------------------------------------------------------
/web/client/build/static/css/main.9aa5bcb2.chunk.css:
--------------------------------------------------------------------------------
1 | .main-table-wrap{font-family:Menlo,Monaco;font-size:.8rem;display:flex;flex-flow:column;height:100vh}.table-wrap-div{flex:1 1;overflow:auto;border-top:1px solid #dee2e6}.table-wrap-div .table>:not(:first-child){border-top:0 solid #dee2e6}.table-wrap-div .table{margin-bottom:0}.table-wrap-div thead tr{border-width:0;background-color:#fff;position:-webkit-sticky;position:sticky;top:0;background:linear-gradient(0deg,#212529,#212529 2px,#fff 0,#fff)}.main-table-wrap table td{overflow:hidden;white-space:nowrap}.top-control{display:flex;align-items:center;background-color:#fff;padding:10px}.top-control>div{margin-right:20px}.main-table-wrap tbody tr.tr-selected{background-color:#2376e5;color:#fff}.main-table-wrap tbody tr.tr-wait-intercept{background-color:#d86e53;color:#fff}.flow-detail{position:fixed;top:0;right:0;height:100vh;background-color:#fff;min-width:500px;width:50%;overflow-y:auto;word-break:break-all;border-left:2px solid #dee2e6}.flow-detail .header-tabs{display:flex;position:-webkit-sticky;position:sticky;top:0;background-color:#fff;padding:5px 0}.flow-detail .header-tabs span{display:inline-block;line-height:1;padding:8px;cursor:pointer}.flow-detail .header-tabs .selected{border-bottom:2px solid #2376e5}.flow-detail .header-tabs .flow-wait-area button{margin-left:10px}.flow-detail .header-block{margin-bottom:20px}.flow-detail .header-block>p{font-weight:700}.flow-detail .header-block .header-block-content p{margin:5px 0}.flow-detail .header-block .header-block-content{margin-left:20px;line-height:1.5}.flow-detail .request-body-detail span{display:inline-block;line-height:1;padding:8px;cursor:pointer}.flow-detail .request-body-detail .selected{border-bottom:2px solid #2376e5}
2 | /*# sourceMappingURL=main.9aa5bcb2.chunk.css.map */
--------------------------------------------------------------------------------
/proxy/addon.go:
--------------------------------------------------------------------------------
1 | package proxy
2 |
3 | import (
4 | "io"
5 | )
6 |
7 | type Addon interface {
8 | // A client has connected to mitmproxy. Note that a connection can correspond to multiple HTTP requests.
9 | ClientConnected(*ClientConn)
10 |
11 | // A client connection has been closed (either by us or the client).
12 | ClientDisconnected(*ClientConn)
13 |
14 | // Mitmproxy has connected to a server.
15 | ServerConnected(*ConnContext)
16 |
17 | // A server connection has been closed (either by us or the server).
18 | ServerDisconnected(*ConnContext)
19 |
20 | // The TLS handshake with the server has been completed successfully.
21 | TlsEstablishedServer(*ConnContext)
22 |
23 | // HTTP request headers were successfully read. At this point, the body is empty.
24 | Requestheaders(*Flow)
25 |
26 | // The full HTTP request has been read.
27 | Request(*Flow)
28 |
29 | // HTTP response headers were successfully read. At this point, the body is empty.
30 | Responseheaders(*Flow)
31 |
32 | // The full HTTP response has been read.
33 | Response(*Flow)
34 |
35 | // Stream request body modifier
36 | StreamRequestModifier(*Flow, io.Reader) io.Reader
37 |
38 | // Stream response body modifier
39 | StreamResponseModifier(*Flow, io.Reader) io.Reader
40 | }
41 |
42 | // BaseAddon do nothing
43 | type BaseAddon struct{}
44 |
45 | func (addon *BaseAddon) ClientConnected(*ClientConn) {}
46 | func (addon *BaseAddon) ClientDisconnected(*ClientConn) {}
47 | func (addon *BaseAddon) ServerConnected(*ConnContext) {}
48 | func (addon *BaseAddon) ServerDisconnected(*ConnContext) {}
49 |
50 | func (addon *BaseAddon) TlsEstablishedServer(*ConnContext) {}
51 |
52 | func (addon *BaseAddon) Requestheaders(*Flow) {}
53 | func (addon *BaseAddon) Request(*Flow) {}
54 | func (addon *BaseAddon) Responseheaders(*Flow) {}
55 | func (addon *BaseAddon) Response(*Flow) {}
56 | func (addon *BaseAddon) StreamRequestModifier(f *Flow, in io.Reader) io.Reader {
57 | return in
58 | }
59 | func (addon *BaseAddon) StreamResponseModifier(f *Flow, in io.Reader) io.Reader {
60 | return in
61 | }
62 |
--------------------------------------------------------------------------------
/web/client/README.md:
--------------------------------------------------------------------------------
1 | # Getting Started with Create React App
2 |
3 | This project was bootstrapped with [Create React App](https://github.com/facebook/create-react-app).
4 |
5 | ## Available Scripts
6 |
7 | In the project directory, you can run:
8 |
9 | ### `yarn start`
10 |
11 | Runs the app in the development mode.\
12 | Open [http://localhost:3000](http://localhost:3000) to view it in the browser.
13 |
14 | The page will reload if you make edits.\
15 | You will also see any lint errors in the console.
16 |
17 | ### `yarn test`
18 |
19 | Launches the test runner in the interactive watch mode.\
20 | See the section about [running tests](https://facebook.github.io/create-react-app/docs/running-tests) for more information.
21 |
22 | ### `yarn build`
23 |
24 | Builds the app for production to the `build` folder.\
25 | It correctly bundles React in production mode and optimizes the build for the best performance.
26 |
27 | The build is minified and the filenames include the hashes.\
28 | Your app is ready to be deployed!
29 |
30 | See the section about [deployment](https://facebook.github.io/create-react-app/docs/deployment) for more information.
31 |
32 | ### `yarn eject`
33 |
34 | **Note: this is a one-way operation. Once you `eject`, you can’t go back!**
35 |
36 | If you aren’t satisfied with the build tool and configuration choices, you can `eject` at any time. This command will remove the single build dependency from your project.
37 |
38 | Instead, it will copy all the configuration files and the transitive dependencies (webpack, Babel, ESLint, etc) right into your project so you have full control over them. All of the commands except `eject` will still work, but they will point to the copied scripts so you can tweak them. At this point you’re on your own.
39 |
40 | You don’t have to ever use `eject`. The curated feature set is suitable for small and middle deployments, and you shouldn’t feel obligated to use this feature. However we understand that this tool wouldn’t be useful if you couldn’t customize it when you are ready for it.
41 |
42 | ## Learn More
43 |
44 | You can learn more in the [Create React App documentation](https://facebook.github.io/create-react-app/docs/getting-started).
45 |
46 | To learn React, check out the [React documentation](https://reactjs.org/).
47 |
--------------------------------------------------------------------------------
/web/client/build/static/js/runtime-main.476c72c1.js:
--------------------------------------------------------------------------------
1 | !function(e){function t(t){for(var n,i,a=t[0],c=t[1],l=t[2],p=0,s=[];p<a.length;p++)i=a[p],Object.prototype.hasOwnProperty.call(o,i)&&o[i]&&s.push(o[i][0]),o[i]=0;for(n in c)Object.prototype.hasOwnProperty.call(c,n)&&(e[n]=c[n]);for(f&&f(t);s.length;)s.shift()();return u.push.apply(u,l||[]),r()}function r(){for(var e,t=0;t<u.length;t++){for(var r=u[t],n=!0,a=1;a<r.length;a++){var c=r[a];0!==o[c]&&(n=!1)}n&&(u.splice(t--,1),e=i(i.s=r[0]))}return e}var n={},o={1:0},u=[];function i(t){if(n[t])return n[t].exports;var r=n[t]={i:t,l:!1,exports:{}};return e[t].call(r.exports,r,r.exports,i),r.l=!0,r.exports}i.e=function(e){var t=[],r=o[e];if(0!==r)if(r)t.push(r[2]);else{var n=new Promise((function(t,n){r=o[e]=[t,n]}));t.push(r[2]=n);var u,a=document.createElement("script");a.charset="utf-8",a.timeout=120,i.nc&&a.setAttribute("nonce",i.nc),a.src=function(e){return i.p+"static/js/"+({}[e]||e)+"."+{3:"fdc4294f"}[e]+".chunk.js"}(e);var c=new Error;u=function(t){a.onerror=a.onload=null,clearTimeout(l);var r=o[e];if(0!==r){if(r){var n=t&&("load"===t.type?"missing":t.type),u=t&&t.target&&t.target.src;c.message="Loading chunk "+e+" failed.\n("+n+": "+u+")",c.name="ChunkLoadError",c.type=n,c.request=u,r[1](c)}o[e]=void 0}};var l=setTimeout((function(){u({type:"timeout",target:a})}),12e4);a.onerror=a.onload=u,document.head.appendChild(a)}return Promise.all(t)},i.m=e,i.c=n,i.d=function(e,t,r){i.o(e,t)||Object.defineProperty(e,t,{enumerable:!0,get:r})},i.r=function(e){"undefined"!==typeof Symbol&&Symbol.toStringTag&&Object.defineProperty(e,Symbol.toStringTag,{value:"Module"}),Object.defineProperty(e,"__esModule",{value:!0})},i.t=function(e,t){if(1&t&&(e=i(e)),8&t)return e;if(4&t&&"object"===typeof e&&e&&e.__esModule)return e;var r=Object.create(null);if(i.r(r),Object.defineProperty(r,"default",{enumerable:!0,value:e}),2&t&&"string"!=typeof e)for(var n in e)i.d(r,n,function(t){return e[t]}.bind(null,n));return r},i.n=function(e){var t=e&&e.__esModule?function(){return e.default}:function(){return e};return i.d(t,"a",t),t},i.o=function(e,t){return Object.prototype.hasOwnProperty.call(e,t)},i.p="/",i.oe=function(e){throw console.error(e),e};var a=this["webpackJsonpmitmproxy-client"]=this["webpackJsonpmitmproxy-client"]||[],c=a.push.bind(a);a.push=t,a=a.slice();for(var l=0;l<a.length;l++)t(a[l]);var f=c;r()}([]);
2 | //# sourceMappingURL=runtime-main.476c72c1.js.map
--------------------------------------------------------------------------------
/go.sum:
--------------------------------------------------------------------------------
1 | github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
2 | github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
3 | github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
4 | github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
5 | github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da h1:oI5xCqsCo564l8iNU+DwB5epxmsaqB+rhGL0m5jtYqE=
6 | github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
7 | github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc=
8 | github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
9 | github.com/kr/pretty v0.2.1 h1:Fmg33tUaq4/8ym9TJN1x7sLJnHVwhP33CNkpYV/7rwI=
10 | github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
11 | github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
12 | github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
13 | github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
14 | github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
15 | github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
16 | github.com/satori/go.uuid v1.2.0 h1:0uYX9dsZ2yD7q2RtLRtPSdGDWzjeM3TbMJP9utgA0ww=
17 | github.com/satori/go.uuid v1.2.0/go.mod h1:dA0hQrYB0VpLJoorglMZABFdXlWrHn1NEOzdhQKdks0=
18 | github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
19 | github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
20 | github.com/stretchr/testify v1.2.2 h1:bSDNvY7ZPG5RlJ8otE/7V6gMiyenm9RtJ7IUVIAoJ1w=
21 | github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
22 | golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
23 | golang.org/x/sys v0.0.0-20220624220833-87e55d714810 h1:rHZQSjJdAI4Xf5Qzeh2bBc5YJIkPFVM6oDtMFYmgws0=
24 | golang.org/x/sys v0.0.0-20220624220833-87e55d714810/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
25 | gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
26 | gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
27 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # mitmproxy
2 |
3 |
4 | [Mitmproxy](https://mitmproxy.org/) implemented with golang. Intercept HTTP & HTTPS requests and responses and modify them.
5 |
6 | ## Features
7 |
8 | - Intercept HTTP & HTTPS requests and responses and modify them on the fly
9 | - SSL/TLS certificates for interception are generated on the fly
10 | - Certificates logic compatible with [mitmproxy](https://mitmproxy.org/), saved at `~/.mitmproxy`. If you used mitmproxy before and installed certificates, then you can use this go-mitmproxy directly
11 | - Addon mechanism, you can add your functions easily, refer to [examples](./examples)
12 | - Performance advantages
13 | - Golang's inherent performance advantages
14 | - Forwarding and parsing HTTPS traffic in process memory without inter-process communication such as tcp port or unix socket
15 | - Use LRU cache when generating certificates of different domain names to avoid double counting
16 | - Support `Wireshark` to analyze traffic through the environment variable `SSLKEYLOGFILE`
17 | - Support streaming when uploading/downloading large files
18 | - Web interface
19 |
20 | ## Install
21 |
22 | ```
23 | go install github.com/kardianos/mitmproxy/cmd/go-mitmproxy@latest
24 | ```
25 |
26 | ## Usage
27 |
28 | ### Startup
29 |
30 | ```
31 | go-mitmproxy
32 | ```
33 |
34 | After startup, the HTTP proxy address defaults to port 9080, and the web interface defaults to port 9081.
35 |
36 | After the first startup, the SSL/TLS certificate will be automatically generated at `~/.mitmproxy/mitmproxy-ca-cert.pem`. You can refer to this link to install: [About Certificates](https://docs.mitmproxy.org/stable/concepts-certificates/).
37 |
38 | ### Help
39 |
40 | ```
41 | Usage of go-mitmproxy:
42 | -addr string
43 | proxy listen addr (default ":9080")
44 | -cert_path string
45 | path of generate cert files
46 | -debug int
47 | debug mode: 1 - print debug log, 2 - show debug from
48 | -dump string
49 | dump filename
50 | -dump_level int
51 | dump level: 0 - header, 1 - header + body
52 | -mapper_dir string
53 | mapper files dirpath
54 | -ssl_insecure
55 | not verify upstream server SSL/TLS certificates.
56 | -version
57 | show version
58 | -web_addr string
59 | web interface listen addr (default ":9081")
60 | ```
61 |
62 | ## Usage as package
63 |
64 | Refer to [cmd/mitmproxy/main.go](./cmd/mitmproxy/main.go), you can add your own addon by call `AddAddon` method.
65 |
66 | For more examples, please refer to [examples](./examples)
67 |
68 | ## Web interface
69 |
70 | Has a web interface to view requests and responses.
71 |
72 | ## TODO
73 |
74 | - [ ] Support http2
75 | - [ ] Support parse websocket
76 |
77 | ## License
78 |
79 | [MIT License](./LICENSE)
80 |
--------------------------------------------------------------------------------
/web/client/src/App.css:
--------------------------------------------------------------------------------
1 | .main-table-wrap {
2 | font-family: Menlo,Monaco;
3 | font-size: 0.8rem;
4 | display: flex;
5 | flex-flow: column;
6 | height: 100vh;
7 | }
8 |
9 | .table-wrap-div {
10 | flex: 1;
11 | overflow: auto;
12 | border-top: 1px solid rgb(222, 226, 230);
13 | }
14 |
15 | .table-wrap-div .table>:not(:first-child) {
16 | border-top: 0 solid rgb(222, 226, 230);
17 | }
18 |
19 | .table-wrap-div .table {
20 | margin-bottom: 0;
21 | }
22 |
23 | /* https://codepen.io/Ray-H/pen/bMedLL */
24 | .table-wrap-div thead tr {
25 | border-width: 0;
26 | background-color: white;
27 | position: sticky;
28 | top: 0;
29 | background: linear-gradient(to top,rgb(33, 37, 41), rgb(33, 37, 41) 2px, white 1px, white 100%);
30 | }
31 |
32 | .main-table-wrap table td {
33 | overflow: hidden;
34 | white-space: nowrap;
35 | }
36 |
37 | .top-control {
38 | display: flex;
39 | align-items: center;
40 | background-color: #fff;
41 | padding: 10px;
42 | }
43 |
44 | .top-control > div {
45 | margin-right: 20px;
46 | }
47 |
48 |
49 | .main-table-wrap tbody tr.tr-selected {
50 | background-color: rgb(35, 118, 229);
51 | color: white;
52 | }
53 |
54 | .main-table-wrap tbody tr.tr-wait-intercept {
55 | background-color: rgb(216, 110, 83);
56 | color: white;
57 | }
58 |
59 | .flow-detail {
60 | position: fixed;
61 | top: 0;
62 | right: 0;
63 |
64 | height: 100vh;
65 | background-color: #fff;
66 | min-width: 500px;
67 | width: 50%;
68 | overflow-y: auto;
69 |
70 | word-break: break-all;
71 | border-left: 2px solid #dee2e6;
72 | }
73 |
74 | .flow-detail .header-tabs {
75 | display: flex;
76 | position: sticky;
77 | top: 0;
78 | background-color: white;
79 | padding: 5px 0;
80 | }
81 |
82 | .flow-detail .header-tabs span {
83 | display: inline-block;
84 | line-height: 1;
85 | padding: 8px;
86 | cursor: pointer;
87 | }
88 |
89 | .flow-detail .header-tabs .selected {
90 | border-bottom: 2px rgb(35, 118, 229) solid;
91 | }
92 |
93 | .flow-detail .header-tabs .flow-wait-area button {
94 | margin-left: 10px;
95 | }
96 |
97 | .flow-detail .header-block {
98 | margin-bottom: 20px;
99 | }
100 |
101 | .flow-detail .header-block > p {
102 | font-weight: bold;
103 | }
104 |
105 | .flow-detail .header-block .header-block-content p {
106 | margin: 5px 0;
107 | }
108 |
109 | .flow-detail .header-block .header-block-content {
110 | margin-left: 20px;
111 | line-height: 1.5;
112 | }
113 |
114 | .flow-detail .request-body-detail span {
115 | display: inline-block;
116 | line-height: 1;
117 | padding: 8px;
118 | cursor: pointer;
119 | }
120 |
121 | .flow-detail .request-body-detail .selected {
122 | border-bottom: 2px rgb(35, 118, 229) solid;
123 | }
124 |
--------------------------------------------------------------------------------
/addon/dumper.go:
--------------------------------------------------------------------------------
1 | package addon
2 |
3 | import (
4 | "bytes"
5 | "fmt"
6 | "io"
7 | "net/http"
8 | "os"
9 | "strings"
10 | "unicode"
11 |
12 | "github.com/kardianos/mitmproxy/proxy"
13 | log "github.com/sirupsen/logrus"
14 | )
15 |
16 | type Dumper struct {
17 | proxy.BaseAddon
18 | out io.Writer
19 | level int // 0: header 1: header + body
20 | }
21 |
22 | func NewDumper(out io.Writer, level int) *Dumper {
23 | if level != 0 && level != 1 {
24 | level = 0
25 | }
26 | return &Dumper{out: out, level: level}
27 | }
28 |
29 | func NewDumperWithFilename(filename string, level int) *Dumper {
30 | out, err := os.OpenFile(filename, os.O_WRONLY|os.O_CREATE|os.O_APPEND, 0666)
31 | if err != nil {
32 | panic(err)
33 | }
34 | return NewDumper(out, level)
35 | }
36 |
37 | func (d *Dumper) Requestheaders(f *proxy.Flow) {
38 | go func() {
39 | <-f.Done()
40 | d.dump(f)
41 | }()
42 | }
43 |
44 | // call when <-f.Done()
45 | func (d *Dumper) dump(f *proxy.Flow) {
46 | // Reference httputil.DumpRequest.
47 |
48 | buf := bytes.NewBuffer(make([]byte, 0))
49 | fmt.Fprintf(buf, "%s %s %s\r\n", f.Request.Method, f.Request.URL.RequestURI(), f.Request.Proto)
50 | fmt.Fprintf(buf, "Host: %s\r\n", f.Request.URL.Host)
51 | if len(f.Request.Raw().TransferEncoding) > 0 {
52 | fmt.Fprintf(buf, "Transfer-Encoding: %s\r\n", strings.Join(f.Request.Raw().TransferEncoding, ","))
53 | }
54 | if f.Request.Raw().Close {
55 | fmt.Fprintf(buf, "Connection: close\r\n")
56 | }
57 |
58 | err := f.Request.Header.WriteSubset(buf, nil)
59 | if err != nil {
60 | log.Error(err)
61 | }
62 | buf.WriteString("\r\n")
63 |
64 | if d.level == 1 && f.Request.Body != nil && len(f.Request.Body) > 0 && canPrint(f.Request.Body) {
65 | buf.Write(f.Request.Body)
66 | buf.WriteString("\r\n\r\n")
67 | }
68 |
69 | if f.Response != nil {
70 | fmt.Fprintf(buf, "%v %v %v\r\n", f.Request.Proto, f.Response.StatusCode, http.StatusText(f.Response.StatusCode))
71 | err = f.Response.Header.WriteSubset(buf, nil)
72 | if err != nil {
73 | log.Error(err)
74 | }
75 | buf.WriteString("\r\n")
76 |
77 | if d.level == 1 && f.Response.Body != nil && len(f.Response.Body) > 0 && f.Response.IsTextContentType() {
78 | body, err := f.Response.DecodedBody()
79 | if err == nil && body != nil && len(body) > 0 {
80 | buf.Write(body)
81 | buf.WriteString("\r\n\r\n")
82 | }
83 | }
84 | }
85 |
86 | buf.WriteString("\r\n\r\n")
87 |
88 | _, err = d.out.Write(buf.Bytes())
89 | if err != nil {
90 | log.Error(err)
91 | }
92 | }
93 |
94 | func canPrint(content []byte) bool {
95 | for _, c := range string(content) {
96 | if !unicode.IsPrint(c) && !unicode.IsSpace(c) {
97 | return false
98 | }
99 | }
100 | return true
101 | }
102 |
--------------------------------------------------------------------------------
/proxy/flowencoding.go:
--------------------------------------------------------------------------------
1 | package proxy
2 |
3 | import (
4 | "bytes"
5 | "compress/flate"
6 | "compress/gzip"
7 | "errors"
8 | "io"
9 | "strconv"
10 | "strings"
11 |
12 | "github.com/andybalholm/brotli"
13 | log "github.com/sirupsen/logrus"
14 | )
15 |
16 | var errEncodingNotSupport = errors.New("content-encoding not support")
17 |
18 | var textContentTypes = []string{
19 | "text",
20 | "javascript",
21 | "json",
22 | }
23 |
24 | func (r *Response) IsTextContentType() bool {
25 | contentType := r.Header.Get("Content-Type")
26 | if contentType == "" {
27 | return false
28 | }
29 | for _, substr := range textContentTypes {
30 | if strings.Contains(contentType, substr) {
31 | return true
32 | }
33 | }
34 | return false
35 | }
36 |
37 | func (r *Response) DecodedBody() ([]byte, error) {
38 | if r.decodedBody != nil {
39 | return r.decodedBody, nil
40 | }
41 |
42 | if r.decodedErr != nil {
43 | return nil, r.decodedErr
44 | }
45 |
46 | if r.Body == nil {
47 | return nil, nil
48 | }
49 |
50 | if len(r.Body) == 0 {
51 | r.decodedBody = r.Body
52 | return r.decodedBody, nil
53 | }
54 |
55 | enc := r.Header.Get("Content-Encoding")
56 | if enc == "" || enc == "identity" {
57 | r.decodedBody = r.Body
58 | return r.decodedBody, nil
59 | }
60 |
61 | decodedBody, decodedErr := decode(enc, r.Body)
62 | if decodedErr != nil {
63 | r.decodedErr = decodedErr
64 | log.Error(r.decodedErr)
65 | return nil, decodedErr
66 | }
67 |
68 | r.decodedBody = decodedBody
69 | r.decoded = true
70 | return r.decodedBody, nil
71 | }
72 |
73 | func (r *Response) ReplaceToDecodedBody() {
74 | body, err := r.DecodedBody()
75 | if err != nil || body == nil {
76 | return
77 | }
78 |
79 | r.Body = body
80 | r.Header.Del("Content-Encoding")
81 | r.Header.Set("Content-Length", strconv.Itoa(len(body)))
82 | r.Header.Del("Transfer-Encoding")
83 | }
84 |
85 | func decode(enc string, body []byte) ([]byte, error) {
86 | if enc == "gzip" {
87 | dreader, err := gzip.NewReader(bytes.NewReader(body))
88 | if err != nil {
89 | return nil, err
90 | }
91 | buf := bytes.NewBuffer(make([]byte, 0))
92 | _, err = io.Copy(buf, dreader)
93 | if err != nil {
94 | return nil, err
95 | }
96 | err = dreader.Close()
97 | if err != nil {
98 | return nil, err
99 | }
100 | return buf.Bytes(), nil
101 | } else if enc == "br" {
102 | dreader := brotli.NewReader(bytes.NewReader(body))
103 | buf := bytes.NewBuffer(make([]byte, 0))
104 | _, err := io.Copy(buf, dreader)
105 | if err != nil {
106 | return nil, err
107 | }
108 | return buf.Bytes(), nil
109 | } else if enc == "deflate" {
110 | dreader := flate.NewReader(bytes.NewReader(body))
111 | buf := bytes.NewBuffer(make([]byte, 0))
112 | _, err := io.Copy(buf, dreader)
113 | if err != nil {
114 | return nil, err
115 | }
116 | return buf.Bytes(), nil
117 | }
118 |
119 | return nil, errEncodingNotSupport
120 | }
121 |
--------------------------------------------------------------------------------
/web/client/src/lib/utils.ts:
--------------------------------------------------------------------------------
1 | import type { IRequest, IResponse } from './flow'
2 |
3 | export const isTextBody = (payload: IRequest | IResponse) => {
4 | if (!payload) return false
5 | if (!payload.header) return false
6 | if (!payload.header['Content-Type']) return false
7 |
8 | return /text|javascript|json|x-www-form-urlencoded|xml|form-data/.test(payload.header['Content-Type'].join(''))
9 | }
10 |
11 | export const getSize = (len: number) => {
12 | if (!len) return '0'
13 | if (isNaN(len)) return '0'
14 | if (len <= 0) return '0'
15 |
16 | if (len < 1024) return `${len} B`
17 | if (len < 1024 * 1024) return `${(len / 1024).toFixed(2)} KB`
18 | return `${(len / (1024 * 1024)).toFixed(2)} MB`
19 | }
20 |
21 | export const shallowEqual = (objA: any, objB: any) => {
22 | if (objA === objB) return true
23 |
24 | const keysA = Object.keys(objA)
25 | const keysB = Object.keys(objB)
26 | if (keysA.length !== keysB.length) return false
27 |
28 | for (let i = 0; i < keysA.length; i++) {
29 | const key = keysA[i]
30 | if (objB[key] === undefined || objA[key] !== objB[key]) return false
31 | }
32 | return true
33 | }
34 |
35 | export const arrayBufferToBase64 = (buf: ArrayBuffer) => {
36 | let binary = ''
37 | const bytes = new Uint8Array(buf)
38 | const len = bytes.byteLength
39 | for (let i = 0; i < len; i++) {
40 | binary += String.fromCharCode(bytes[i])
41 | }
42 | return btoa(binary)
43 | }
44 |
45 | export const bufHexView = (buf: ArrayBuffer) => {
46 | let str = ''
47 | const bytes = new Uint8Array(buf)
48 | const len = bytes.byteLength
49 |
50 | let viewStr = ''
51 |
52 | str += '00000000: '
53 | for (let i = 0; i < len; i++) {
54 | str += bytes[i].toString(16).padStart(2, '0') + ' '
55 |
56 | if (bytes[i] >= 32 && bytes[i] <= 126) {
57 | viewStr += String.fromCharCode(bytes[i])
58 | } else {
59 | viewStr += '.'
60 | }
61 |
62 | if ((i + 1) % 16 === 0) {
63 | str += ' ' + viewStr
64 | viewStr = ''
65 | str += `\n${(i + 1).toString(16).padStart(8, '0')}: `
66 | } else if ((i + 1) % 8 === 0) {
67 | str += ' '
68 | }
69 | }
70 |
71 | // 补充最后一行的空白
72 | if (viewStr.length > 0) {
73 | for (let i = viewStr.length; i < 16; i++) {
74 | str += ' ' + ' '
75 | if ((i + 1) % 8 === 0) str += ' '
76 | }
77 | str += ' ' + viewStr
78 | }
79 |
80 | return str
81 | }
82 |
83 | // https://github.com/febobo/web-interview/issues/84
84 | export function isInViewPort(element: HTMLElement) {
85 | const viewWidth = window.innerWidth || document.documentElement.clientWidth
86 | const viewHeight = window.innerHeight || document.documentElement.clientHeight
87 | const {
88 | top,
89 | right,
90 | bottom,
91 | left,
92 | } = element.getBoundingClientRect()
93 |
94 | return (
95 | top >= 0 &&
96 | left >= 0 &&
97 | right <= viewWidth &&
98 | bottom <= viewHeight
99 | )
100 | }
101 |
--------------------------------------------------------------------------------
/cmd/mitmproxy/main.go:
--------------------------------------------------------------------------------
1 | package main
2 |
3 | import (
4 | "flag"
5 | "fmt"
6 | rawLog "log"
7 | "os"
8 |
9 | "github.com/kardianos/mitmproxy/addon"
10 | "github.com/kardianos/mitmproxy/cert"
11 | "github.com/kardianos/mitmproxy/proxy"
12 | "github.com/kardianos/mitmproxy/web"
13 | log "github.com/sirupsen/logrus"
14 | )
15 |
16 | type Config struct {
17 | debug int
18 | version bool
19 | certPath string
20 |
21 | addr string
22 | webAddr string
23 | ssl_insecure bool
24 |
25 | dump string // dump filename
26 | dumpLevel int // dump level
27 |
28 | mapperDir string
29 | }
30 |
31 | func loadConfig() *Config {
32 | config := new(Config)
33 |
34 | flag.IntVar(&config.debug, "debug", 0, "debug mode: 1 - print debug log, 2 - show debug from")
35 | flag.BoolVar(&config.version, "version", false, "show version")
36 | flag.StringVar(&config.addr, "addr", ":9080", "proxy listen addr")
37 | flag.StringVar(&config.webAddr, "web_addr", ":9081", "web interface listen addr")
38 | flag.BoolVar(&config.ssl_insecure, "ssl_insecure", false, "not verify upstream server SSL/TLS certificates.")
39 | flag.StringVar(&config.dump, "dump", "", "dump filename")
40 | flag.IntVar(&config.dumpLevel, "dump_level", 0, "dump level: 0 - header, 1 - header + body")
41 | flag.StringVar(&config.mapperDir, "mapper_dir", "", "mapper files dirpath")
42 | flag.StringVar(&config.certPath, "cert_path", "", "path of generate cert files")
43 | flag.Parse()
44 |
45 | return config
46 | }
47 |
48 | func main() {
49 | config := loadConfig()
50 |
51 | if config.debug > 0 {
52 | rawLog.SetFlags(rawLog.LstdFlags | rawLog.Lshortfile)
53 | log.SetLevel(log.DebugLevel)
54 | } else {
55 | log.SetLevel(log.InfoLevel)
56 | }
57 | if config.debug == 2 {
58 | log.SetReportCaller(true)
59 | }
60 | log.SetOutput(os.Stdout)
61 | log.SetFormatter(&log.TextFormatter{
62 | FullTimestamp: true,
63 | })
64 |
65 | l, err := cert.NewPathLoader(config.certPath)
66 | if err != nil {
67 | log.Fatal(err)
68 | }
69 | ca, err := cert.New(l)
70 | if err != nil {
71 | log.Fatal(err)
72 | }
73 |
74 | opts := &proxy.Options{
75 | Debug: config.debug,
76 | Addr: config.addr,
77 | StreamLargeBodies: 1024 * 1024 * 5,
78 | InsecureSkipVerifyTLS: config.ssl_insecure,
79 | CA: ca,
80 | }
81 |
82 | p, err := proxy.NewProxy(opts)
83 | if err != nil {
84 | log.Fatal(err)
85 | }
86 |
87 | if config.version {
88 | fmt.Println("go-mitmproxy: " + p.Version)
89 | os.Exit(0)
90 | }
91 |
92 | log.Infof("go-mitmproxy version %v\n", p.Version)
93 |
94 | p.AddAddon(&addon.LogAddon{})
95 | p.AddAddon(web.NewWebAddon(config.webAddr))
96 |
97 | if config.dump != "" {
98 | dumper := addon.NewDumperWithFilename(config.dump, config.dumpLevel)
99 | p.AddAddon(dumper)
100 | }
101 |
102 | if config.mapperDir != "" {
103 | mapper := addon.NewMapper(config.mapperDir)
104 | p.AddAddon(mapper)
105 | }
106 |
107 | log.Fatal(p.Start())
108 | }
109 |
--------------------------------------------------------------------------------
/web/client/build/static/css/main.9aa5bcb2.chunk.css.map:
--------------------------------------------------------------------------------
1 | {"version":3,"sources":["webpack://src/App.css"],"names":[],"mappings":"AAAA,iBACE,wBAAyB,CACzB,eAAiB,CACjB,YAAa,CACb,gBAAiB,CACjB,YACF,CAEA,gBACE,QAAO,CACP,aAAc,CACd,4BACF,CAEA,0CACE,0BACF,CAEA,uBACE,eACF,CAGA,yBACE,cAAe,CACf,qBAAuB,CACvB,uBAAgB,CAAhB,eAAgB,CAChB,KAAM,CACN,gEACF,CAEA,0BACE,eAAgB,CAChB,kBACF,CAEA,aACE,YAAa,CACb,kBAAmB,CACnB,qBAAsB,CACtB,YACF,CAEA,iBACE,iBACF,CAGA,sCACE,wBAAmC,CACnC,UACF,CAEA,4CACE,wBAAmC,CACnC,UACF,CAEA,aACE,cAAe,CACf,KAAM,CACN,OAAQ,CAER,YAAa,CACb,qBAAsB,CACtB,eAAgB,CAChB,SAAU,CACV,eAAgB,CAEhB,oBAAqB,CACrB,6BACF,CAEA,0BACE,YAAa,CACb,uBAAgB,CAAhB,eAAgB,CAChB,KAAM,CACN,qBAAuB,CACvB,aACF,CAEA,+BACE,oBAAqB,CACrB,aAAc,CACd,WAAY,CACZ,cACF,CAEA,oCACE,+BACF,CAEA,iDACE,gBACF,CAEA,2BACE,kBACF,CAEA,6BACE,eACF,CAEA,mDACE,YACF,CAEA,iDACE,gBAAiB,CACjB,eACF,CAEA,uCACE,oBAAqB,CACrB,aAAc,CACd,WAAY,CACZ,cACF,CAEA,4CACE,+BACF","file":"main.9aa5bcb2.chunk.css","sourcesContent":[".main-table-wrap {\n font-family: Menlo,Monaco;\n font-size: 0.8rem;\n display: flex;\n flex-flow: column;\n height: 100vh;\n}\n\n.table-wrap-div {\n flex: 1;\n overflow: auto;\n border-top: 1px solid rgb(222, 226, 230);\n}\n\n.table-wrap-div .table>:not(:first-child) {\n border-top: 0 solid rgb(222, 226, 230);\n}\n\n.table-wrap-div .table {\n margin-bottom: 0;\n}\n\n/* https://codepen.io/Ray-H/pen/bMedLL */\n.table-wrap-div thead tr {\n border-width: 0;\n background-color: white;\n position: sticky;\n top: 0;\n background: linear-gradient(to top,rgb(33, 37, 41), rgb(33, 37, 41) 2px, white 1px, white 100%);\n}\n\n.main-table-wrap table td {\n overflow: hidden;\n white-space: nowrap;\n}\n\n.top-control {\n display: flex;\n align-items: center;\n background-color: #fff;\n padding: 10px;\n}\n\n.top-control > div {\n margin-right: 20px;\n}\n\n\n.main-table-wrap tbody tr.tr-selected {\n background-color: rgb(35, 118, 229);\n color: white;\n}\n\n.main-table-wrap tbody tr.tr-wait-intercept {\n background-color: rgb(216, 110, 83);\n color: white;\n}\n\n.flow-detail {\n position: fixed;\n top: 0;\n right: 0;\n\n height: 100vh;\n background-color: #fff;\n min-width: 500px;\n width: 50%;\n overflow-y: auto;\n\n word-break: break-all;\n border-left: 2px solid #dee2e6;\n}\n\n.flow-detail .header-tabs {\n display: flex;\n position: sticky;\n top: 0;\n background-color: white;\n padding: 5px 0;\n}\n\n.flow-detail .header-tabs span {\n display: inline-block;\n line-height: 1;\n padding: 8px;\n cursor: pointer;\n}\n\n.flow-detail .header-tabs .selected {\n border-bottom: 2px rgb(35, 118, 229) solid;\n}\n\n.flow-detail .header-tabs .flow-wait-area button {\n margin-left: 10px;\n}\n\n.flow-detail .header-block {\n margin-bottom: 20px;\n}\n\n.flow-detail .header-block > p {\n font-weight: bold;\n}\n\n.flow-detail .header-block .header-block-content p {\n margin: 5px 0;\n}\n\n.flow-detail .header-block .header-block-content {\n margin-left: 20px;\n line-height: 1.5;\n}\n\n.flow-detail .request-body-detail span {\n display: inline-block;\n line-height: 1;\n padding: 8px;\n cursor: pointer;\n}\n\n.flow-detail .request-body-detail .selected {\n border-bottom: 2px rgb(35, 118, 229) solid;\n}\n"]}
--------------------------------------------------------------------------------
/proxy/helper.go:
--------------------------------------------------------------------------------
1 | package proxy
2 |
3 | import (
4 | "bytes"
5 | "io"
6 | "net"
7 | "os"
8 | "strings"
9 | "sync"
10 |
11 | log "github.com/sirupsen/logrus"
12 | )
13 |
14 | var normalErrMsgs []string = []string{
15 | "read: connection reset by peer",
16 | "write: broken pipe",
17 | "i/o timeout",
18 | "net/http: TLS handshake timeout",
19 | "io: read/write on closed pipe",
20 | "connect: connection refused",
21 | "connect: connection reset by peer",
22 | "use of closed network connection",
23 | }
24 |
25 | // Only print unexpected error messages.
26 | func logErr(log *log.Entry, err error) (loged bool) {
27 | msg := err.Error()
28 |
29 | for _, str := range normalErrMsgs {
30 | if strings.Contains(msg, str) {
31 | log.Debug(err)
32 | return
33 | }
34 | }
35 |
36 | log.Error(err)
37 | loged = true
38 | return
39 | }
40 |
41 | // Forward traffic.
42 | func transfer(log *log.Entry, server, client io.ReadWriteCloser) {
43 | done := make(chan struct{})
44 | defer close(done)
45 |
46 | errChan := make(chan error)
47 | go func() {
48 | _, err := io.Copy(server, client)
49 | log.Debugln("client copy end", err)
50 | client.Close()
51 | select {
52 | case <-done:
53 | return
54 | case errChan <- err:
55 | return
56 | }
57 | }()
58 | go func() {
59 | _, err := io.Copy(client, server)
60 | log.Debugln("server copy end", err)
61 | server.Close()
62 |
63 | if clientConn, ok := client.(*wrapClientConn); ok {
64 | err := clientConn.Conn.(*net.TCPConn).CloseRead()
65 | log.Debugln("clientConn.Conn.(*net.TCPConn).CloseRead()", err)
66 | }
67 |
68 | select {
69 | case <-done:
70 | return
71 | case errChan <- err:
72 | return
73 | }
74 | }()
75 |
76 | for i := 0; i < 2; i++ {
77 | if err := <-errChan; err != nil {
78 | logErr(log, err)
79 | return
80 | }
81 | }
82 | }
83 |
84 | // Try to read Reader into the buffer.
85 | // If the buffer limit size is reached then read from buffered data and rest of connection.
86 | // Otherwise just return buffer.
87 | func readerToBuffer(r io.Reader, limit int64) ([]byte, io.Reader, error) {
88 | buf := bytes.NewBuffer(make([]byte, 0))
89 | lr := io.LimitReader(r, limit)
90 |
91 | _, err := io.Copy(buf, lr)
92 | if err != nil {
93 | return nil, nil, err
94 | }
95 |
96 | // If limit is reached.
97 | if int64(buf.Len()) == limit {
98 | // Return new Reader.
99 | return nil, io.MultiReader(bytes.NewBuffer(buf.Bytes()), r), nil
100 | }
101 |
102 | // Return buffer.
103 | return buf.Bytes(), nil, nil
104 | }
105 |
106 | // Wireshark parse https setup.
107 | var tlsKeyLogWriter io.Writer
108 | var tlsKeyLogOnce sync.Once
109 |
110 | func getTLSKeyLogWriter() io.Writer {
111 | tlsKeyLogOnce.Do(func() {
112 | logfile := os.Getenv("SSLKEYLOGFILE")
113 | if logfile == "" {
114 | return
115 | }
116 |
117 | writer, err := os.OpenFile(logfile, os.O_WRONLY|os.O_CREATE|os.O_APPEND, 0666)
118 | if err != nil {
119 | log.Debugf("getTlsKeyLogWriter OpenFile error: %v", err)
120 | return
121 | }
122 |
123 | tlsKeyLogWriter = writer
124 | })
125 | return tlsKeyLogWriter
126 | }
127 |
--------------------------------------------------------------------------------
/proxy/flow.go:
--------------------------------------------------------------------------------
1 | package proxy
2 |
3 | import (
4 | "encoding/json"
5 | "errors"
6 | "io"
7 | "net/http"
8 | "net/url"
9 |
10 | uuid "github.com/satori/go.uuid"
11 | )
12 |
13 | // flow http request
14 | type Request struct {
15 | Method string `json:"method"`
16 | URL *url.URL `json:"url"`
17 | Proto string `json:"proto"`
18 | Header http.Header `json:"header"`
19 | Body []byte `json:"-"`
20 |
21 | raw *http.Request `json:"-"`
22 | }
23 |
24 | func newRequest(req *http.Request) *Request {
25 | return &Request{
26 | Method: req.Method,
27 | URL: req.URL,
28 | Proto: req.Proto,
29 | Header: req.Header,
30 | raw: req,
31 | }
32 | }
33 |
34 | func (r *Request) Raw() *http.Request {
35 | return r.raw
36 | }
37 |
38 | func (req *Request) MarshalJSON() ([]byte, error) {
39 | return json.Marshal(req)
40 | }
41 |
42 | func (req *Request) UnmarshalJSON(data []byte) error {
43 | r := make(map[string]any)
44 | err := json.Unmarshal(data, &r)
45 | if err != nil {
46 | return err
47 | }
48 |
49 | rawurl, ok := r["url"].(string)
50 | if !ok {
51 | return errors.New("url parse error")
52 | }
53 | u, err := url.Parse(rawurl)
54 | if err != nil {
55 | return err
56 | }
57 |
58 | rawheader, ok := r["header"].(map[string]any)
59 | if !ok {
60 | return errors.New("rawheader parse error")
61 | }
62 |
63 | header := make(map[string][]string)
64 | for k, v := range rawheader {
65 | vals, ok := v.([]any)
66 | if !ok {
67 | return errors.New("header parse error")
68 | }
69 |
70 | svals := make([]string, 0)
71 | for _, val := range vals {
72 | sval, ok := val.(string)
73 | if !ok {
74 | return errors.New("header parse error")
75 | }
76 | svals = append(svals, sval)
77 | }
78 | header[k] = svals
79 | }
80 |
81 | *req = Request{
82 | Method: r["method"].(string),
83 | URL: u,
84 | Proto: r["proto"].(string),
85 | Header: header,
86 | }
87 | return nil
88 | }
89 |
90 | // flow http response
91 | type Response struct {
92 | StatusCode int `json:"statusCode"`
93 | Header http.Header `json:"header"`
94 | Body []byte `json:"-"`
95 | BodyReader io.Reader
96 |
97 | close bool // connection close
98 |
99 | decodedBody []byte
100 | decoded bool // decoded reports whether the response was sent compressed but was decoded to decodedBody.
101 | decodedErr error
102 | }
103 |
104 | // flow
105 | type Flow struct {
106 | Id uuid.UUID
107 | ConnContext *ConnContext
108 | Request *Request
109 | Response *Response
110 |
111 | // https://docs.mitmproxy.org/stable/overview-features/#streaming
112 | // 如果为 true,则不缓冲 Request.Body 和 Response.Body,且不进入之后的 Addon.Request 和 Addon.Response
113 | Stream bool
114 |
115 | done chan struct{}
116 | }
117 |
118 | func newFlow() *Flow {
119 | return &Flow{
120 | Id: uuid.NewV4(),
121 | done: make(chan struct{}),
122 | }
123 | }
124 |
125 | func (f *Flow) Done() <-chan struct{} {
126 | return f.done
127 | }
128 |
129 | func (f *Flow) finish() {
130 | close(f.done)
131 | }
132 |
133 | func (f *Flow) MarshalJSON() ([]byte, error) {
134 | j := make(map[string]any)
135 | j["id"] = f.Id
136 | j["request"] = f.Request
137 | j["response"] = f.Response
138 | return json.Marshal(j)
139 | }
140 |
--------------------------------------------------------------------------------
/web/client/public/index.html:
--------------------------------------------------------------------------------
1 | <!DOCTYPE html>
2 | <html lang="en">
3 | <head>
4 | <meta charset="utf-8" />
5 | <link rel="icon" href="%PUBLIC_URL%/favicon.ico" />
6 | <meta name="viewport" content="width=device-width, initial-scale=1" />
7 | <meta name="theme-color" content="#000000" />
8 | <meta
9 | name="description"
10 | content="Web site created using create-react-app"
11 | />
12 | <link rel="apple-touch-icon" href="%PUBLIC_URL%/logo192.png" />
13 | <!--
14 | manifest.json provides metadata used when your web app is installed on a
15 | user's mobile device or desktop. See https://developers.google.com/web/fundamentals/web-app-manifest/
16 | -->
17 | <link rel="manifest" href="%PUBLIC_URL%/manifest.json" />
18 | <!--
19 | Notice the use of %PUBLIC_URL% in the tags above.
20 | It will be replaced with the URL of the `public` folder during the build.
21 | Only files inside the `public` folder can be referenced from the HTML.
22 |
23 | Unlike "/favicon.ico" or "favicon.ico", "%PUBLIC_URL%/favicon.ico" will
24 | work correctly both with client-side routing and a non-root public URL.
25 | Learn how to configure a non-root public URL by running `npm run build`.
26 | -->
27 | <title>go-mitmproxy
28 |
29 |
30 |
31 |
32 |
33 |
34 |
35 |
36 |
46 |
47 |