mitmproxy

QQ20130628-2

mitmproxy是一款支持SSL的HTTP代理,它可以用于调试HTTP通信,发起中间人攻击等。mitmproxy提供了一个控制台接口用于动态拦 截和编辑HTTP数据包。mitmdump是mitmproxy的命令行版本,功能与其相同。

link:http://www.mitmproxy.org/
mitmproxy的主要特点:

Intercept and modify HTTP traffic on the fly

Save HTTP conversations for later replay and analysis

Replay both HTTP clients and servers

Make scripted changes to HTTP traffic using Python

SSL interception certs generated on the fly

Continue Reading

Hooking library calls on Mac using DYLD_INSERT_LIBRARIES

QQ20130410-1
Mac offers a way to override functions in a shared library with DYLD_INSERT_LIBRARIES environment variable (which is similar to LD_PRELOAD on Linux). When you make a twin brother of a function that is defined in an existing shared library, put it in you a shared library, and you register your shared library name in DYLD_INSERT_LIBRARIES, your function is used instead of the original one. This is my simple test. Here I’ve replaced f() in mysharedlib.dylib with f() in openhook.dylib.

Continue Reading