Question 1

How to set up mitmproxy for debugging an iOS app?

Accepted Answer

Install the mitmproxy CA certificate on your iOS device via a profile, configure the HTTP proxy in Wi-Fi settings, and ensure the app trusts user-installed certificates. The official docs provide step-by-step guides for platform-specific setup.

Question 2

mitmproxy vs Burp Suite for security testing?

Accepted Answer

mitmproxy is free and open-source with strong scripting and customization for hands-on analysis, while Burp Suite offers more GUI features and automated scanning in its paid version. Choose mitmproxy for cost-effective, programmable interception or Burp for comprehensive, out-of-the-box auditing tools.

Question 3

Can mitmproxy handle HTTP/2 traffic interception?

Accepted Answer

Yes, mitmproxy fully supports HTTP/2 along with HTTP/1 and WebSockets, allowing decryption and manipulation of modern web traffic. This is explicitly stated in the README's feature list for protocol coverage.

Question 4

How to replay recorded traffic with mitmdump?

Accepted Answer

Use the `mitmdump -r` command to load a saved flow file and replay requests, optionally with scripts to modify responses. The documentation includes examples for automating traffic replay in testing scenarios.

Question 5

Is mitmproxy safe to use on production systems?

Accepted Answer

mitmproxy is designed for debugging and testing, not production monitoring; it can introduce performance overhead and security risks if misconfigured. Always use it in controlled environments to avoid interfering with live traffic.

Question 6

How to write a custom filter for mitmproxy traffic?

Accepted Answer

Create a Python script using the mitmproxy addon API to hook into events like `request` or `response`, then filter based on criteria like URLs or headers. The contrib repository has examples for common use cases.

mitmproxy

What is mitmproxy?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions