./net/mitmproxy, Interactive console program for inspecting and editing traffic flows

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 6.0.2nb1, Package name: mitmproxy-6.0.2nb1, Maintainer: leot

This package contains tool for HTTP(S) sniffing.

mitmproxy is an interactive, SSL-capable man-in-the-middle proxy
for HTTP with a console interface.

mitmdump is the command-line version of mitmproxy. Think tcpdump
for HTTP.

mitmweb is a web-based interface for mitmproxy.

pathoc and pathod are perverse HTTP client and server applications
designed to let you craft almost any conceivable HTTP request,
including ones that creatively violate the standards.

Required to run:
[security/py-OpenSSL] [devel/py-urwid] [security/py-asn1] [devel/py-blinker] [www/py-flask] [www/py-tornado] [devel/py-pyparsing] [security/py-passlib] [security/py-cryptography] [devel/py-click] [devel/py-protobuf] [x11/py-pyperclip] [security/py-certifi] [www/py-h2] [www/py-hyperframe] [devel/py-ruamel-yaml] [databases/py-ldap3] [devel/py-sortedcontainers] [archivers/py-zstandard] [devel/py-kaitaistruct] [www/py-wsproto] [lang/python37] [archivers/py-brotli] [www/py-publicsuffix2]

Required to build:

Master sites:

SHA1: 5f7b9a79228569eedfc4b15ff48207c841c9082b
RMD160: cfcc6008453cab266d2bcb614915b6d398039770
Filesize: 26635.432 KB

Version history: (Expand)

CVS history: (Expand)

   2021-02-26 09:47:03 by Leonardo Taccari | Files touched by this commit (1)
Log message:
mitmproxy: Add missing dependency to py-sqlite3

Reported by Austin Wise via <https://github.com/NetBSD/pkgsrc/pull/84>, thanks!

   2020-12-19 12:54:42 by Leonardo Taccari | Files touched by this commit (3) | Package updated
Log message:
mitmproxy: Update to 6.0.2

15 December 2020: mitmproxy 6.0.2
* Fix reading of saved flows in mitmweb.

13 December 2020: mitmproxy 6.0.1
* Fix flow serialization in mitmweb.

13 December 2020: mitmproxy 6.0
* Mitmproxy now requires Python 3.8 or above.
* Deprecation of pathod and pathoc tools and modules. Future releases will not \ 
contain them! (@Kriechi)
* SSLKEYLOGFILE now supports TLS 1.3 secrets (@mhils)
* Fix query parameters in asgiapp addon (@jpstotz)
* Fix command history failing on file I/O errors (@Kriechi)
* Add example addon to suppress unwanted error messages sent by mitmproxy. \ 
* Updated imports and styles for web scanner helper addons. (@anneborcherding)
* Inform when underscore-formatted options are used in client arg. (@jrblixt)
* ASGIApp now ignores loaded HTTP flows from somewhere. (@linw1995)
* Binaries are now built with Python 3.9 (@mhils)
* Fixed the web UI showing blank page on clicking details tab when server \ 
address is missing (@samhita-sopho)
* Tests: Replace asynctest with stdlib mock (@felixonmars)
* MapLocal now keeps its configuration when other options are set. (@mhils)
* Host headers with non-standard ports are now properly updated in reverse proxy \ 
mode. (@mhils)
* Fix missing host header when replaying HTTP/2 flows (@Granitosaurus)
   2020-12-04 21:45:51 by Nia Alarie | Files touched by this commit (456)
Log message:
Revbump packages with a runtime Python dep but no version prefix.

For the Python 3.8 default switch.
   2020-11-24 18:06:50 by Leonardo Taccari | Files touched by this commit (3) | Package updated
Log message:
mitmproxy: Update to 5.3.0

* Support for Python 3.9 (@mhils)
* Add MsgPack content viewer (@tasn)
* Use `@charset` to decode CSS files if available (@prinzhorn)
* Fix links to anticache docs in mitmweb and use HTTPS for links to
  documentation (@rugk)
* Updated typing for WebsocketMessage.content (@prinzhorn)
* Add option `console_strip_trailing_newlines`, and no longer strip trailing
  newlines by default (@capt8bit)
* Prevent transparent mode from connecting to itself in the basic
  cases (@prinzhorn)
* Display HTTP trailers in mitmweb (@sanlengjingvv)
* Revamp onboarding app (@mhils)
* Add ASGI support for embedded apps (@mhils)
* Updated raw exports to not remove headers (@wchasekelley)
* Fix file unlinking before external viewer finishes loading (@wchasekelley)
* Add --cert-passphrase command line argument (@mirosyn)
* Add interactive tutorials to the documentation (@mplattner)
* Support `deflateRaw` for `Content-Encoding`'s (@kjoconnor)
* Fix broken requests without body on HTTP/2 (@Kriechi)
* Add support for sending (but not parsing) HTTP Trailers to the HTTP/1.1
  protocol (@bburky)
* Add support to echo http trailers in dumper addon (@shiv6146)
* Fix OpenSSL requiring different CN for root and leaf certificates (@mhils)
* ... and various other fixes, documentation improvements, dependency
  version bumps, etc.
   2020-07-19 18:01:28 by Leonardo Taccari | Files touched by this commit (3) | Package updated
Log message:
mitmproxy: Update to 5.2

 * Add Filter message to mitmdump (@sarthak212)
 * Display TCP flows at flow list (@Jessonsotoventura, @nikitastupin, @mhils)
 * Colorize JSON Contentview (@sarthak212)
 * Fix console crash when entering regex escape character in half-open
   string (@sarthak212)
 * Integrate contentviews to TCP flow details (@nikitastupin)
 * Added add-ons that enhance the performance of web application
   scanners (@anneborcherding)
 * Increase WebSocket message timestamp precision (@JustAnotherArchivist)
 * Fix HTTP reason value on HTTP/2 reponses (@rbdixon)
 * mitmweb: support wslview to open a web browser (@G-Rath)
 * Fix dev version detection with parent git repo (@JustAnotherArchivist)
 * Restructure examples and supported addons (@mhils)
 * Certificate generation: mark SAN as critical if no CN is set (@mhils)
 * Simplify Replacements with new ModifyBody addon (@mplattner)
 * Rename SetHeaders addon to ModifyHeaders (@mplattner)
 * mitmweb: "New -> File" menu option has been renamed to \ 
"Clear All"
 * Add new MapRemote addon to rewrite URLs of requests (@mplattner)
 * Add support for HTTP Trailers to the HTTP/2 protocol
   (@sanlengjingvv and @Kriechi)
 * Fix certificate runtime error during expire cleanup (@gorogoroumaru)
 * Fixed the DNS Rebind Protection for secure support of IPv6 addresses
 * WebSockets: match the HTTP-WebSocket flow for the ~websocket filter
 * Fix deadlock caused by the "replay.client.stop" command (@gorogoroumaru)
 * Add new MapLocal addon to serve local files instead of remote
   resources (@mplattner and @mhils)
 * Add minimal TCP interception and modification (@nikitastupin)
 * Add new CheckSSLPinning addon to check SSL-Pinning on client (@su-vikas)
 * Add a JSON dump script: write data into a file or send to an endpoint as
   JSON (@emedvedev)
 * Fix console output formatting (@sarthak212)
 * Add example for proxy authentication using selenium
   (@anneborcherding and @weichweich)
   2020-04-13 22:40:22 by Leonardo Taccari | Files touched by this commit (3) | Package updated
Log message:
mitmproxy: Update to 5.1.1

    * Fixed Docker images not starting due to missing shell

  ** Major Changes **
    * Initial Support for TLS 1.3

  ** Full Changelog **
    * Reduce leaf certificate validity to one year due to upcoming browser
      changes (@mhils)
    * Rename mitmweb's web_iface option to web_host for consistency (@oxr463)
    * Sending a SIGTERM now exits mitmproxy without prompt, SIGINT still
      asks (@ThinkChaos)
    * Don't force host header on outgoing requests (@mhils)
    * Additional documentation and examples for WebSockets (@Kriechi)
    * Gracefully handle hyphens in domain names (@matosconsulting)
    * Fix header replacement count (@naivekun)
    * Emit serverconnect event only after a connection has been
      established (@Prinzhorn)
    * Fix ValueError in table mode of server replay flow (@ylmrx)
    * HTTP/2: send all stream reset types to other connection (@rohfle)
    * HTTP/2: fix WINDOW_UPDATE swallowed on closed streams (@Kriechi)
    * Fix wrong behavior of --allow-hosts options (@BlownSnail)
    * Additional and updated documentation for examples, WebSockets,
      Getting Started (@Kriechi)
   2020-01-01 22:30:03 by Leonardo Taccari | Files touched by this commit (2) | Package updated
Log message:
mitmproxy: Update to 5.0.1

 * Fixed precompiled Linux binaries to not crash in table mode.
 * Support image/webp preview in mitmweb
   2019-12-17 11:21:51 by Leonardo Taccari | Files touched by this commit (4) | Package updated
Log message:
mitmproxy: Update to 5.0.0

** Major Changes **
  * Added new Table UI (@Jessonsotoventura)
  * Added EKU extension to certificates. This fixes support for macOS Catalina \ 

** Security Fixes **
  * Fixed command injection vulnerabilities when exporting flows as curl/httpie \ 
commands (@cript0nauta)
  * Do not echo unsanitized user input in HTTP error responses (@fimad)

** Full Changelog **
  * Moved to Github CI for Continuous Integration, dropping support for old \ 
Linux and macOS releases. (#3728)
  * Vastly improved command parsing, in particular for setting flow filters (@typoon)
  * Added a new flow export for raw responses (@mckeimic)
  * URLs are now edited in an external editor (@Jessonsotoventura)
  * mitmproxy now has a command history (@typoon)
  * Added terminal like keyboard shortcuts for the command bar (ctrl+w, ctrl+a, \ 
ctrl+f, ...) (@typoon)
  * Fixed issue with improper handling of non-ascii characters in URLs (@rjt-gupta)
  * Filtering can now use unicode characters (@rjt-gupta)
  * Fixed issue with user keybindings not being able to override default keybindings
  * Improved installation instructions
  * Added support for IPV6-only environments (@sethb157)
  * Fixed bug with server replay (@rjt-gupta)
  * Fixed issue with duplicate error responses (@ccssrryy)
  * Users can now set a specific external editor using $MITMPROXY_EDITOR (@rjt-gupta)
  * Config file can now be called `config.yml` or `config.yaml` (@ylmrx)
  * Fixed crash on `view.focus.[next|prev]` (@ylmrx)
  * Updated documentation to help using mitmproxy certificate on Android (@jannst)
  * Added support to parse IPv6 entries from `pfctl` on MacOS. (@tomlabaude)
  * Fixed instructions on how to build the documentation (@jannst)
  * Added a new `--allow-hosts` option (@pierlon)
  * Added support for zstd content-encoding (@tsaaristo)
  * Fixed issue where the replay server would corrupt the Date header (@tonyb486)
  * Improve speed for WebSocket interception (@MathieuBordere)
  * Fixed issue with parsing JPEG files. (@lusceu)
  * Improve example code style (@BoboTiG)
  * Fixed issue converting void responses to HAR (@worldmind)
  * Color coded http status codes in mitmweb (@arun-94)
  * Added organization to generated certificates (@Abcdefghijklmnopqrstuvwxyzxyz)
  * Errors are now displayed on sys.stderr (@JessicaFavin)
  * Fixed issue with replay timestamps (@rjt-gupta)
  * Fixed copying in mitmweb on macOS (@XZzYassin)