6 repository-uri
Intercepts HTTPS traffic transparently for inspection, with bypass rules and upstream certificate verification.
Distinct from Security & HTTPS: Distinct from Security & HTTPS: focuses on intercepting and inspecting decrypted HTTPS traffic, not general HTTPS enforcement or certificate management.
Explore 6 awesome GitHub repositories matching security & cryptography · Transparent HTTPS Inspections. Refine with filters or upvote what's useful.
An HTTP proxy library for Go
Decrypts HTTPS traffic using dynamically generated TLS certificates for full traffic visibility.
Microsandbox is a runtime for creating and managing lightweight, hardware-isolated virtual machines — called sandboxes — that boot directly from standard OCI container images. Each sandbox runs as its own host process with a separate kernel, filesystem, and network stack, providing process-per-sandbox isolation. The project includes a command-line tool and multi-language SDKs (Rust, TypeScript, Python, Go) for programmatic lifecycle control, and it communicates with sandbox agents over Unix sockets using a CBOR-encoded protocol. What distinguishes Microsandbox is its combination of host-manag
Terminates TLS on the host side and re-encrypts to the upstream server, allowing policy rules and logging to see plaintext request data.
microsandbox is a platform that runs untrusted code inside hardware-isolated microVMs, each with its own kernel, filesystem, and network stack. It boots directly from standard OCI container images, supports copy-on-write filesystem layers, and integrates with AI agents to execute tool calls and generated code in isolated environments with secret protection. What sets microsandbox apart is its host-side network proxy that enforces firewall rules, intercepts DNS, inspects TLS traffic, and injects secrets at the network boundary without exposing them inside the VM. It provides SSH access to micr
The sandbox platform enables transparent HTTPS interception for specified ports with bypass, upstream verification, and QUIC blocking.
AdguardFilters is a collection of curated adblock filter lists, content blocking rulesets, and DNS blocklists. Its primary purpose is to provide the rules necessary to identify and remove advertisements, tracking scripts, and intrusive elements across web browsers and applications. The project includes specialized rules for cosmetic filtering to hide layout gaps and a malware domain database to block phishing and spyware destinations. It provides distinct filtering sets for different regions and purposes, such as social media blocking. The repository covers broad capability areas including m
Intercepts and decrypts HTTPS traffic transparently using a root certificate to remove ads and trackers.
PCAPdroid is an Android network traffic analyzer and packet capture tool that operates without requiring root access. It functions as a VPN-based firewall and network controller, capable of recording traffic in PCAPng format and blocking connections to specific domains or malicious hosts. The project distinguishes itself through a proxy-based system for decrypting TLS traffic and routing device network traffic through SOCKS5 proxies or the Tor network. It further allows for the modification of live HTTP requests and responses via custom scripts. Its capabilities cover application connection
Implements a proxy-based system that transparently decrypts HTTPS traffic for inspection of mobile application communications.
Shadowrocket is a proxy client application for mobile devices that functions as a multi-protocol proxy manager and a rule-based traffic router. It acts as a programmable network gateway, utilizing a virtual network interface to route system-level traffic through secure tunnels. The project distinguishes itself through a programmable environment that executes JavaScript scripts and modules to automate DNS resolution and handle complex network request logic. It further provides an HTTPS traffic inspector capable of decrypting encrypted traffic using custom certificates to modify headers and rew
Intercepts and decrypts HTTPS traffic using locally generated root certificates for debugging and analysis.