What is man-in-the-middle-proxy

mitm proxy

I took inspiration from mitmproxy, I like that project, it is built mainly with python but some parts (lower level parts) are built in Rust. I want to basically clone that project completely in Rust adding some features.

Features and Roadmap

• 🔐 HTTP / HTTP(s)
• 🖱 ️ Gui
• ⌨ Possibility of choosing a customised address and listening port
• 🔍 Details for each request and response
• 🎯 Filtering the list of requests by method
• ❌ Deleting a single request from the list
• 🚫 Clear all requests and clean the table
• 🌌 Dark / light theme
• 🫳 Requests manipulation and replication
• 👻 Transparent mode

The structure

The application is splitted into two main parts:

• GUI side
• API side

The two parts run in different threads and communicate through a channel. The channel is not multiplexed; the receiver is the GUI, and the transmitter is the API, probably this communication method will change, the goal is to manipulate requests allowing to handle them from Gui, and the handled request will be sended to Api through another channel from Gui (tx) to Api (rx) but currently Data is generated on the API side and sent to the other side in order to display them.

In order to launch the app is mandatory to generate a self-signed certificate through openssl. The generation is very simple and could be done directly running this command in the terminal:

openssl req -x509 -newkey rsa:4096 -keyout mitmproxy.key -out mitmproxy.cer -sha256 -days 700000 -nodes

this command will generate 2 files, a private key "mitmproxy.key" and a certificate "mitmproxy.cer". Both formats map to major encoding schemes for x.509 certificates and keys. You have to manually trust .cer file to proceed.

When the app is launched a starter menu appears, it allow you to chose custom listener address and port, if you want to listen traffic only in localhost keep the default value. To intercept local network remember to trust the .cer also on every single network device.