httptoolkit icon indicating copy to clipboard operation
httptoolkit copied to clipboard

Published 20 hours ago verified publisher icon httptoolkit

Intercept a target windows process

Open TonyValenti opened this issue 1 year ago • 2 comments
trafficstars

There are some windows apps that do not respect windows proxy settings. Today, we are using two apps to overcome this: Proxifier (this can force any app to send data through a proxy) Fiddler (an alternative to Http Toolkit).

It would be really nice if HTTP Toolkit had an "Attach to Process" feature such that I could eliminate Proxifier and just use HTTP Toolkit.

TonyValenti avatar Oct 22 '24 12:10 TonyValenti

Good suggestion! I would definitely like to do this. As far as I can tell, most tools like Proxifier work by hooking native platform APIs for socket connections, and then modifying the socket before it's returned (to redirect the traffic to the proxy). You'll also need to trust the proxy certificate - presumably with Fiddler you're doing so by installing it globally on your system, but we could also do so in theory by hooking those system APIs as well, isolating this precisely to the target process.

We currently already do almost exactly that for Android, using Frida to dynamically hook applications on rooted devices, so doing the same for Windows would make a lot of sense! It's unlikely to happen immediately but I'm definitely open to doing so.

The first step towards this would be creating Windows scripts similar to the existing Android scripts at https://github.com/httptoolkit/frida-interception-and-unpinning/ to hook network & certificate APIs. Somebody has almost certainly written these before elsewhere, but I haven't seen them myself, so that will require some research and/or script writing.

I've done some digging and there is a DLL + SOCKS based open source approach here: https://github.com/nefarius/socksifier/. We couldn't use that directly (manually shipping hook DLLs would be possible but inconvenient, and we don't currently support SOCKS, though I'd like to - #645) but it's probably a good reference for the API hooks required for this.

If any of this is super interesting to you, you're welcome to help out with that - note that HTTP Toolkit Pro is totally free for all contributors, and of course everything is open source so once we have working scripts for this anybody will be able to use them with Frida anywhere.

pimterry avatar Oct 24 '24 12:10 pimterry

#518

nutterthanos avatar Jan 28 '25 13:01 nutterthanos