awesome-repositories.com
Blog
awesome-repositories.com

Discover the best open-source repositories with AI-powered search.

ExploreCurated searchesOpen-source alternativesSelf-hosted softwareBlogSitemap
ProjectAboutHow we rankPressMCP server
LegalPrivacyTerms
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
Back to mitmproxy/mitmproxy

Open-source alternatives to Mitmproxy

30 open-source projects similar to mitmproxy/mitmproxy, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best Mitmproxy alternative.

  • ginuerzh/gostginuerzh avatar

    ginuerzh/gost

    18,019View on GitHub↗

    gost is a multi-protocol proxy tunnel and secure tunneling server designed to route network traffic through encrypted connections. It functions as a traffic obfuscation gateway and a transparent proxy server capable of intercepting TCP and UDP traffic at the IP level. The project also includes a virtual network interface manager for creating TUN and TAP devices to intercept operating system packets. The system distinguishes itself through a chain-based request routing model, allowing traffic to pass through an ordered sequence of proxy nodes. It provides extensive transport-layer encapsulatio

    Godnsgogolang
    View on GitHub↗18,019
  • semporia/tiktok-unlockSemporia avatar

    Semporia/TikTok-Unlock

    11,833View on GitHub↗

    TikTok-Unlock is a utility designed for the management and retrieval of historical mobile application versions. It functions as a network traffic proxy that intercepts and inspects outgoing requests from desktop applications to identify and download specific software release identifiers. The tool utilizes man-in-the-middle traffic interception to capture and modify encrypted network requests between a client and remote servers. By performing dynamic API response injection and client-side request redirection, it enables the identification of legacy build metadata, allowing users to access and

    JavaScripttiktoktiktok-unlockunlock
    View on GitHub↗11,833
  • alibaba/higressalibaba avatar

    alibaba/higress

    7,558View on GitHub↗

    Higress is an AI API gateway and cloud-native traffic manager that functions as a Kubernetes ingress controller. It provides a centralized system for routing, securing, and optimizing traffic directed toward large language models, AI agents, and microservice architectures. The project distinguishes itself through deep AI orchestration, including the ability to host and manage Model Context Protocol servers that transform REST APIs into tools for AI agents. It features specialized AI infrastructure for model request proxying, protocol translation across multiple providers, and semantic-based c

    Goai-gatewayai-nativeapi-gateway
    View on GitHub↗7,558

AI search

Explore more awesome repositories

Describe what you need in plain English — the AI ranks thousands of curated open-source projects by relevance.

Find more with AI search
  • cert-manager/cert-managercert-manager avatar

    cert-manager/cert-manager

    13,578View on GitHub↗

    This project is a Kubernetes controller that automates the issuance, renewal, and lifecycle management of TLS certificates. It functions as a native extension to the cluster API, using custom resource definitions and reconciliation loops to maintain the desired state of certificates and trust bundles across distributed services. By integrating directly with the cluster's admission control and secret storage systems, it ensures that cryptographic identities are consistently provisioned and available for application workloads. The project distinguishes itself through its extensive support for a

    Gocertificatecrdhacktoberfest
    View on GitHub↗13,578
  • unblockneteasemusic/serverUnblockNeteaseMusic avatar

    UnblockNeteaseMusic/server

    7,753View on GitHub↗

    This project is a proxy server designed to intercept and modify HTTP and HTTPS traffic for Netease Cloud Music. It functions as network middleware to restore playback for songs and albums restricted by geographic regions and to unlock premium account features, such as high-fidelity audio. The server utilizes header-based privilege injection to spoof premium status and employs conditional content redirection to route requests for unavailable media to alternative source providers. It also incorporates upstream proxy routing and IP parameters to bypass regional access restrictions. Additional c

    JavaScripthacktoberfest
    View on GitHub↗7,753
  • tinyproxy/tinyproxytinyproxy avatar

    tinyproxy/tinyproxy

    5,886View on GitHub↗

    Tinyproxy is a lightweight HTTP and HTTPS proxy daemon designed for POSIX operating systems. It functions as a system-level network proxy that manages web traffic with minimal resource overhead. The project supports multiple routing modes, including reverse proxying to forward requests to backend servers and transparent proxying to intercept network traffic without client-side configuration. It also includes a header filter to modify or block specific HTTP headers for privacy and security. The software incorporates network access control based on client subnets and protocol filtering. For sy

    C
    View on GitHub↗5,886
  • haoel/haoel.github.iohaoel avatar

    haoel/haoel.github.io

    13,063View on GitHub↗

    This project is a technical resource and guide for bypassing internet censorship and network restrictions. It provides instructional documentation for configuring proxies and tunnels to circumvent IP blocking and access restricted websites and services. The guides cover the deployment of Shadowsocks, L2TP/IPSec, and SSH tunnels on virtual private servers. It focuses on masking server IP addresses by routing traffic through content delivery networks and using WebSockets to maintain connectivity. Additional technical coverage includes the implementation of SOCKS5 and HTTP proxies, the configur

    Shell
    View on GitHub↗13,063
  • go-gost/gostgo-gost avatar

    go-gost/gost

    6,972View on GitHub↗

    Gost is a Go-based network tunnel and multi-protocol proxy server. It functions as a gateway for routing TCP and UDP traffic, creating secure network tunnels between remote endpoints, and acting as a DNS proxy server to resolve domain name queries. The project is distinguished by its ability to implement multi-hop proxy chaining, which links multiple network nodes in a sequence to route traffic through specific paths. It also provides transparent proxying by integrating with virtual network interfaces to intercept system-level traffic without requiring manual client configuration. The system

    Godnsdtlsgolang
    View on GitHub↗6,972
  • proxymanapp/proxymanProxymanApp avatar

    ProxymanApp/Proxyman

    6,858View on GitHub↗

    Proxyman is a cross-platform HTTP debugging proxy that captures, inspects, and modifies HTTP, HTTPS, and WebSocket traffic. It functions as a man-in-the-middle proxy, decrypting SSL/TLS traffic to allow real-time inspection and modification of encrypted requests and responses. The tool is designed for debugging web and mobile applications, with capabilities for API mocking and simulation, scriptable traffic modification, and team collaboration on network logs. What distinguishes Proxyman is its deep integration with mobile and cross-platform development workflows. It provides automated certif

    debugging-tooliosmacos
    View on GitHub↗6,858
  • shopify/toxiproxyShopify avatar

    Shopify/toxiproxy

    12,088View on GitHub↗

    Toxiproxy is a framework designed for chaos engineering and network resilience testing. It functions as a programmable TCP proxy that intercepts and routes data streams between clients and servers, allowing developers to simulate unstable network conditions such as latency, bandwidth throttling, and connection failures. The tool provides a control plane that enables the dynamic manipulation of network conditions on active connections in real time. By integrating into automated test suites, it allows for the programmatic injection of faults to validate how distributed systems and microservices

    Gochaosdowngo
    View on GitHub↗12,088
  • ettercap/ettercapEttercap avatar

    Ettercap/ettercap

    2,682View on GitHub↗

    Ettercap is a network utility tool used for ARP spoofing, packet filtering, traffic interception, passive scanning, and DHCP hijacking. It functions as a network traffic interceptor and man-in-the-middle packet filter to monitor and manipulate live TCP/UDP connections on a local area network. The project provides specialized capabilities for traffic redirection via ARP cache poisoning, DHCP server spoofing, ICMP redirects, and switch port stealing. It also enables the emulation of rogue services and the decryption of SSH1 session streams by substituting public keys. Additional capabilities i

    C
    View on GitHub↗2,682
  • envoyproxy/envoyenvoyproxy avatar

    envoyproxy/envoy

    27,630View on GitHub↗

    Envoy is a high-performance, cloud-native service proxy designed for service-to-service communication in distributed architectures. It functions as a service mesh data plane, providing a centralized mechanism for managing, securing, and observing network traffic between microservices. The project is distinguished by its ability to perform dynamic traffic management and configuration updates in real-time without requiring service restarts or downtime. It utilizes a non-blocking, event-driven architecture to handle high-concurrency connections and supports hot-restart process management, which

    C++carscatscats-over-dogs
    View on GitHub↗27,630
  • probelabs/goreplayprobelabs avatar

    probelabs/goreplay

    19,286View on GitHub↗

    Goreplay is an HTTP traffic mirroring tool designed to capture live network traffic from production environments and replay it into test systems for validation. It includes a specialized Kubernetes traffic capturer that operates as a daemonset to mirror traffic from specific pods using label selectors and namespace filters, alongside a TCP traffic recorder for intercepting raw network packets. The project features a Kafka traffic pipeline for streaming captured payloads to topics or ingesting messages for playback, and an HTTP request transformer to mask sensitive data or rewrite headers and

    Go
    View on GitHub↗19,286
  • wanghongenpin/proxypinwanghongenpin avatar

    wanghongenpin/proxypin

    13,357View on GitHub↗

    Proxypin is a cross-platform HTTP and HTTPS proxy debugger designed to capture, inspect, and modify network traffic. It functions as a man-in-the-middle interceptor, allowing developers to analyze application data flows and validate network communication during development and testing. The tool distinguishes itself through its focus on mobile and remote device integration, utilizing QR-code-based configuration synchronization to simplify the setup of proxy settings and security certificates. It includes an event-driven scripting engine that enables programmatic manipulation of requests and re

    Dartcapture-trafficcharlesfiddler
    View on GitHub↗13,357
  • linkerd/linkerd2linkerd avatar

    linkerd/linkerd2

    11,424View on GitHub↗

    This project is a service mesh platform designed to manage, secure, and observe service-to-service communication within Kubernetes clusters. It functions as a control plane that orchestrates transparent sidecar proxies, which intercept and manage network traffic to provide reliable connectivity for microservices. By automating the injection of these proxies, the platform ensures that infrastructure-level policies are applied consistently across all workloads without requiring manual configuration changes. The platform distinguishes itself through its focus on zero-trust security and cross-clu

    Gocloud-nativegolangkubernetes
    View on GitHub↗11,424
  • v2ray/v2ray-corev2ray avatar

    v2ray/v2ray-core

    46,872View on GitHub↗

    v2ray-core is a network proxy framework and custom proxy engine designed for censorship circumvention. It functions as a traffic routing platform that directs network data between inbound and outbound connections to access blocked content and services. The system employs a modular architecture using pluggable protocol handlers and a chain-based connection pipeline to transform and forward network traffic. It provides secure tunneling infrastructure to establish encrypted connections and uses a rule-based routing system to direct data between protocols and destinations. The framework includes

    Gogolanghttp-proxyproxy
    View on GitHub↗46,872
  • avwo/whistleavwo avatar

    avwo/whistle

    15,570View on GitHub↗

    Whistle is an HTTP debugging proxy that captures, inspects, and modifies traffic through a web-based management interface. It operates as a man-in-the-middle proxy, intercepting HTTP, HTTPS, HTTP/2, WebSocket, and TCP traffic between clients and servers, and provides a plugin-based architecture that extends core functionality with custom rules, UI panels, and protocol handlers at runtime. The project distinguishes itself through a combination of capabilities that go beyond basic traffic inspection. It supports server-side headless operation on Linux, allowing it to intercept traffic for appli

    JavaScriptcharlesdebugfiddler
    View on GitHub↗15,570
  • andresriancho/w3afandresriancho avatar

    andresriancho/w3af

    4,850View on GitHub↗

    w3af is a web penetration testing suite and security audit framework designed to identify and exploit vulnerabilities in web applications. It functions as a vulnerability scanner that crawls targets to find injection points and a fuzzer used to discover hidden endpoints and test input validation. The project distinguishes itself by providing an intercepting HTTP proxy for capturing and modifying traffic, combined with a knowledge-base driven exploitation system. It enables the execution of security exploits to gain remote shell access and supports post-exploitation activities, such as routing

    Pythonappseccross-site-scriptingscanner
    View on GitHub↗4,850
  • v2fly/v2ray-corev2fly avatar

    v2fly/v2ray-core

    34,136View on GitHub↗

    V2ray-core is a modular network proxy engine designed to manage inbound and outbound traffic through a unified, rule-based processing pipeline. It functions as a background service that operates multiple concurrent network protocols within a single process, allowing for flexible traffic management and the independent handling of diverse communication streams. The project distinguishes itself through a highly decoupled architecture that treats network protocols as swappable modules, enabling the encapsulation of various transport layers into a consistent stream-based model. It features a centr

    Goanticensorshiphacktoberfestnetwork
    View on GitHub↗34,136
  • slackhq/nebulaslackhq avatar

    slackhq/nebula

    17,405View on GitHub↗

    Nebula is a scalable, decentralized overlay networking tool designed to create secure, encrypted peer-to-peer connections between distributed hosts. By utilizing a certificate-based identity authority, it enables the construction of private communication fabrics across disparate physical infrastructures, such as multiple cloud providers or on-premises data centers, without requiring central authentication servers. The project distinguishes itself through a zero-trust architecture that enforces granular, policy-driven firewall filtering based on certificate-derived group memberships. It facili

    Go
    View on GitHub↗17,405
  • didi/dokitdidi avatar

    didi/DoKit

    20,421View on GitHub↗

    DoKit is a frontend development debugging toolset designed for web and mobile applications. It provides a suite of utilities for intercepting network traffic, mocking API responses, inspecting UI hierarchies, and monitoring mobile app performance. The project is distinguished by its focus on hybrid app inspection, allowing developers to execute scripts within web views and browse internal application sandboxes. It includes a visual UI audit tool with alignment rulers and color pickers to verify that interfaces match design specifications, as well as a diagnostic system that tracks CPU usage a

    Javaandroidiosminiapp
    View on GitHub↗20,421
  • cloudflare/pingoracloudflare avatar

    cloudflare/pingora

    26,833View on GitHub↗

    Pingora is a Rust-based framework for building high-performance network services, including HTTP reverse proxies, layer seven load balancers, and TLS termination proxies. It serves as an asynchronous network library designed to intercept and route HTTP, gRPC, and WebSocket traffic between clients and upstream backend servers. The project enables zero-downtime service updates by handing over listening sockets between processes during binary or configuration upgrades. It utilizes a programmable multi-phase pipeline to modify request and response bodies and headers, and it provides a pluggable T

    Rust
    View on GitHub↗26,833
  • xtls/xray-coreXTLS avatar

    XTLS/Xray-core

    39,605View on GitHub↗

    Xray-core is a high-performance, cross-platform networking engine designed to manage secure data transmission and traffic routing. At its core, the project utilizes an asynchronous, event-driven runtime model capable of handling thousands of concurrent connections through non-blocking input and output. It functions as a central traffic controller, employing a sophisticated routing engine that dynamically matches incoming network requests to specific outbound proxies based on user-defined criteria. The project distinguishes itself through a modular architecture that decouples proxy and transpo

    Goanticensorshipdnsnetwork
    View on GitHub↗39,605
  • putyy/res-downloaderputyy avatar

    putyy/res-downloader

    18,158View on GitHub↗

    Res-downloader is a network proxy utility designed to intercept, analyze, and extract multimedia assets from web traffic. It functions as a gateway that captures video, audio, and image files directly from data streams for local storage and offline access. The tool employs man-in-the-middle interception to decrypt and inspect network packets, allowing it to identify media resources through pattern matching and content type filtering. It integrates proxy-based routing to manage outgoing requests, enabling the retrieval of content that may be subject to regional restrictions or network-level ac

    Godouyinkuaishoures-downloader
    View on GitHub↗18,158
  • docmirror/dev-sidecardocmirror avatar

    docmirror/dev-sidecar

    21,033View on GitHub↗

    Dev-sidecar is a local HTTP proxy tool designed to optimize development environments by intercepting and modifying network traffic. It functions as a man-in-the-middle service that routes outgoing requests through custom endpoints, enabling developers to accelerate access to remote services, manage package registry connections, and bypass regional connectivity restrictions. The tool distinguishes itself through its ability to perform dynamic DNS resolution overrides and certificate-based traffic inspection, allowing for granular control over network paths and secure data analysis. It employs

    JavaScriptdev-sidecardns-ipelectron
    View on GitHub↗21,033
  • opsnull/follow-me-install-kubernetes-clusteropsnull avatar

    opsnull/follow-me-install-kubernetes-cluster

    7,546View on GitHub↗

    This project provides a comprehensive guide and set of scripts for deploying and configuring a production-ready Kubernetes cluster from scratch. It centers on establishing a functional environment by installing core management components, storage, and networking across multiple nodes. The implementation emphasizes high availability for the control plane, utilizing layer-4 load balancing and leader election for the API server, scheduler, and controller manager. It further ensures reliability through the deployment of a distributed key-value store for persistent runtime data. The project cover

    Shellcontainerdcorednsdocker
    View on GitHub↗7,546
  • r0ysue/r0capturer0ysue avatar

    r0ysue/r0capture

    7,674View on GitHub↗

    r0capture is a tool for intercepting network traffic from Android applications. It serves as a traffic interceptor, packet sniffer, and client certificate exporter used to analyze application-layer communication on Android devices. The project provides mechanisms to bypass SSL pinning and certificate validation, allowing the decryption of encrypted traffic without modifying device trust stores. It also enables the extraction of client-side certificates from application memory for saving to local device storage. Captured network data is serialized into PCAP files to support offline protocol a

    Python
    View on GitHub↗7,674
  • ehang-io/npsehang-io avatar

    ehang-io/nps

    34,090View on GitHub↗

    nps is an intranet penetration proxy server that exposes internal network services to the public internet via secure TCP and UDP tunnels. It functions as a traffic forwarder and reverse proxy, enabling external access to local services, remote desktops, and internal APIs. The project is distinguished by a centralized web-based administration interface used to configure tunnels, manage user accounts, and monitor real-time bandwidth metrics. It supports domain-based request routing and provides a mechanism to secure public services using HTTPS encryption through digital certificates. The syste

    Godnsfirewallgo
    View on GitHub↗34,090
  • alibaba/anyproxyalibaba avatar

    alibaba/anyproxy

    7,913View on GitHub↗

    AnyProxy is an HTTP/HTTPS proxy framework built on Node.js that intercepts and modifies traffic through a plugin system. It functions as a configurable proxy server where user-defined plugins inspect or alter requests and responses as they pass through the proxy. The framework distinguishes itself through a middleware stack that processes requests sequentially, enabling modular traffic transformation and logging. It handles HTTPS interception by dynamically generating and installing root certificates for transparent decryption, and routes traffic based on configurable rules matching request p

    JavaScript
    View on GitHub↗7,913
  • wuchangming/spy-debuggerwuchangming avatar

    wuchangming/spy-debugger

    7,620View on GitHub↗

    spy-debugger is an HTTP proxy debugging tool designed for intercepting and analyzing network traffic from mobile devices, WebViews, and mobile browsers. It functions as a network packet capture tool and a remote browser inspector, allowing users to monitor HTTP and HTTPS requests wirelessly without the need for USB cables. The project distinguishes itself by using script injection to enable remote debugging. It injects JavaScript into HTTP response bodies, providing the ability to inspect HTML and CSS elements and perform live page content editing directly on the mobile screen. Additionally,

    JavaScriptdebugspy-debuggerwechat
    View on GitHub↗7,620