Published on June 9th, 2015 📆 | 6768 Views ⚑0
Proxenet – Hacker Friendly Proxy for Web Application Penetration Tests
Proxenet is a hacker friendly proxy for web application penetration tests.
proxenetis a multi-threaded proxy which allows you manipulate your HTTP requests and responses using your favorite scripting language. No need to learn Java (like for Burp) or Python (like for mitmproxy).
proxenetsupports heaps of languages (see the section "Language Versions") and more can be easily added.
proxenetis not script kiddie friendly, neither GUI friendly. If this is what you are looking for, here are a few links for you:
Or the best way, write your own GUI as a
The idea behind
proxenetcame after a lot of frustration from attempting to write extensions for Burp. Moreover, only a few proxies already existing supports the possibility to add new extensions. And when they do, they are (one) language specific - despite Burp persistent attempts to make unnatural bindings (Python over Java or worse Ruby over Java.
Being written in pure C, it is fast, efficient and easily pluggable to anything else. It is the utimate real DIY web proxy for pentest(ers).
Here are a sample of features already supported by
Written in C
- Fast (heavy thread use)
- Efficient (POSIX compatible)
- Low memory footprint (for the core)
- Can interact with any language
Provides plugins support for the following languages:
- Full SSL interception (internal CA)
- SSL client certificate authentication
- HTTP Proxy forwarding
- White-list/Black-list hosts filtering
- Command interface out-of-band
- Nice TTY colors 😀
- 100% Open-Source
... and more !
The best of both world ?
Some people might miss the beautiful interface some other GUI-friendly proxies provide. So be it! Plug
proxenetas a relay behind your favorite
burst, etc. and enjoy the show!
How to start
$ git clone https://github.com/hugsy/proxenet.git $ cd proxenet && cmake . && make