- Follow the instructions to install mitmproxy and launch either
mitmproxyormitmweb. If you plan on sniffing traffic from a macOS VM, it is probably preferable to install mitmproxy on the host OS. - Change your proxy settings in macOS to use your local IPv4 address with port 8080 (by default).
System Settings→Network→Advanced→HTTPandHTTPSproxies
- Install the mitmproxy certificate by navigating to http://mitm.it/
- Disable SSL verification.
- On mitmweb, this is toggled in
Options→Don't verify server certificates
- On mitmweb, this is toggled in
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """Copyright (c) 2024 Cypheriel. | |
| Secure Remote Password protocol implementation. | |
| This module provides an implementation of the Secure Remote Password protocol, as defined in RFC 5054. | |
| For now, only the client-side implementation is provided. | |
| This implementation is designed to be compatible with the Apple SRP implementation, as used in the GrandSlam framework. | |
| See: | |
| - https://datatracker.ietf.org/doc/html/rfc5054 |
Cypheriel
/ $mitmproxy for macOS internal services.md
Last active
October 14, 2024 15:21
Guide for installing and setting up both mitmproxy and Frida mainly for use with sniffing HTTP(S) traffic internal to macOS.