PERL: is this possible? making a mitm server listening at localhost.

////// · 02-25-2021, 11:39 AM

is it possible to do a man in the middle (proxy)server listening at 127.0.0.1 : 80 - 443 tcp, and then inspect traffic with "whatever", like setting up browser to use localhost proxy?

i am askin this because i dont want to try to do something that isnt possible

i know http is possible but dont know if https is possible.

i have played with mitm proxy : https://mitmproxy.org/ but i would rather do it myself with perl.

thanks.

smallpond · 02-25-2021, 03:44 PM

To do a mitm on encrypted traffic you need to decrypt then encrypt. To decrypt you need a private key trusted by the client. You would have to make your own and import it into the trusted file for a browser or else the browser will pop up the Untrusted Site! warning.

dugan · 02-25-2021, 06:46 PM

Looks like there are Perl libraries for LetsEncrypt, so... yes?

////// · 02-26-2021, 03:09 AM

Quote:

Originally Posted by smallpond

To do a mitm on encrypted traffic you need to decrypt then encrypt. To decrypt you need a private key trusted by the client. You would have to make your own and import it into the trusted file for a browser or else the browser will pop up the Untrusted Site! warning.

yes, that was what you had to do with mitmproxy.

Quote:

Looks like there are Perl libraries for LetsEncrypt, so... yes?

ill take a look on that module.

thanks guys