proxyfor 0.5.0

A powerful and flexible proxy CLI for capturing and inspecting HTTP(S) and WS(S) traffic
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149

<h1 id="install-proxyfors-certificate-authority">Install proxyfor’s
Certificate Authority</h1>
<head>
    <title>proxyfor</title>
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
</head>
<style>
summary {
    display: flex;
    align-items: center;
}
summary * {
    margin: 0;
    padding: 0;
}

summary::-webkit-details-marker {
    display: none;
}

summary:before {
    content: '';
    display: inline-block;
    margin-right: 5px;
}
</style>
<details>
<summary>
<h2 id="windows">Windows</h2>
</summary>
<p><a
href="./proxyfor-ca-cert.cer">proxyfor-ca-cert.cer</a></p>
<h3 id="manual-installation">Manual Installation</h3>
<ol type="1">
<li>Double-click the CER file to start the import wizard.</li>
<li>Select a certificate store location. This determines who will trust
the certificate – only the current Windows user or everyone on the
machine. Click Next.</li>
<li>Click Next again.</li>
<li>Leave Password blank and click Next.</li>
<li>Select Place all certificates in the following
store, then click Browse, and select Trusted Root Certification
Authorities.<br />
Click OK and Next.</li>
<li>Click Finish.</li>
<li>Click Yes to confirm the warning dialog.</li>
</ol>
<h3 id="automated-installation">Automated Installation</h3>
<ol type="1">
<li>Run <code>certutil.exe -addstore root proxyfor-ca-cert.cer</code>
(<a
href="https://technet.microsoft.com/en-us/library/cc732443.aspx">details</a>).</li>
</ol>
</details>
<details>
<summary>
<h2 id="linux">Linux</h2>
</summary>
<p><a
href="./proxyfor-ca-cert.pem">proxyfor-ca-cert.pem</a></p>
<h3 id="ubuntudebian">Ubuntu/Debian</h3>
<ol type="1">
<li><code>mv proxyfor-ca-cert.pem /usr/local/share/ca-certificates/proxyfor.crt</code></li>
<li><code>sudo update-ca-certificates</code></li>
</ol>
<h3 id="fedora">Fedora</h3>
<ol type="1">
<li><code>mv proxyfor-ca-cert.pem /etc/pki/ca-trust/source/anchors/</code></li>
<li><code>sudo update-ca-trust</code></li>
</ol>
</details>
<details>
<summary>
<h2 id="macos">macOS</h2>
</summary>
<p><a
href="./proxyfor-ca-cert.pem">proxyfor-ca-cert.pem</a></p>
<h3 id="manual-installation-1">Manual Installation</h3>
<ol type="1">
<li>Double-click the PEM file to open the Keychain Access
application.</li>
<li>Locate the new certificate “proxyfor” in the list and double-click
it.</li>
<li>Change Secure Socket Layer (SSL) to Always Trust.</li>
<li>Close the dialog window and enter your password if prompted.</li>
</ol>
<h3 id="automated-installation-1">Automated Installation</h3>
<ol type="1">
<li><code>sudo security add-trusted-cert -d -p ssl -p basic -k /Library/Keychains/System.keychain proxyfor-ca-cert.pem</code></li>
</ol>
</details>
<details>
<summary>
<h2 id="ios">iOS</h2>
</summary>
<p><a
href="./proxyfor-ca-cert.pem">proxyfor-ca-cert.pem</a></p>
<h3 id="ios-13">iOS 13+</h3>
<ol type="1">
<li>Use Safari to download the certificate. Other browsers may not open
the proper installation prompt.</li>
<li>Install the new Profile (Settings -&gt; General -&gt; VPN &amp;
Device Management).</li>
<li><strong>Important: Go to Settings -&gt; General -&gt; About -&gt;
Certificate Trust Settings.</strong> Toggle proxyfor to ON.</li>
</ol>
</details>
<details>
<summary>
<h2 id="android">Android</h2>
</summary>
<p><a
href="./proxyfor-ca-cert.cer">proxyfor-ca-cert.cer</a></p>
<h3 id="android-10">Android 10+</h3>
<ol type="1">
<li>Open the downloaded CER file.</li>
<li>Enter proxyfor (or anything else) as the certificate name.</li>
<li>For credential use, select VPN and apps.</li>
<li>Click OK.</li>
</ol>
<p>Some Android distributions require you to install the certificate via
Settings -&gt; Security -&gt; Advanced -&gt; Encryption and credentials
-&gt; Install a certificate -&gt; CA certificate (or similar)
instead.</p>
<p><strong>Warning:</strong> Apps that target Android API Level 24
(introduced in 2016) and above only accept certificates from the system
trust store (<a
href="https://github.com/proxyfor/proxyfor/issues/2054">#2054</a>).
User-added CAs are not accepted unless the application manually opts in.
Except for browsers, you need to patch most apps manually (<a
href="https://developer.android.com/training/articles/security-config">Android
network security config</a>).</p>
<p>Alternatively, if you have rooted the device and have Magisk
installed, you can install <a href="/cert/magisk">this Magisk module</a>
via the Magisk Manager app.</p>
</details>
<details>
<summary>
<h2 id="firefox">Firefox</h2>
</summary>
<p><a
href="./proxyfor-ca-cert.pem">proxyfor-ca-cert.pem</a></p>
<h3 id="firefox-1">Firefox</h3>
<ol type="1">
<li>Open Options -&gt; Privacy &amp; Security and click View
Certificates… at the bottom of the page.</li>
<li>Click Import… and select the downloaded certificate.</li>
<li>Enable Trust this CA to identify websites and click OK.</li>
</ol>