<<<<<<< HEAD
fluxzy
fluxzy is an HTTP intermediate and MITM engine for recording and altering HTTP/1.1, H2, and WebSocket traffic over plain or secure channels.
This repository contains the .NET library and the Fluxzy CLI that enables you to use fluxzy as a standalone application on a terminal on Windows, macOS, and Linux.
| .NET Package | Description | Version |
|---|---|---|
| Fluxzy Core | Core library |  |
| Fluxzy.Core.Pcap | Extensions that enable raw packet capture along the HTTP(S) exchange | |
=======
Features | Quick usage (.NET) | Quick usage (CLI) | Quick usage (Docker) | Documentation | Build | License | Releases
fluxzy is a fully managed and fully streamed MITM engine and a CLI app to intercept, record and alter HTTP/1.1, H2, websocket traffic over plain or secure channels.
This repository contains the source code of Fluxzy CLI which is a standalone command line application for Windows, macOS, and Linux and the .NET packages that are used by Fluxzy Desktop.
1. Features
1.1 Core features
- Intercept HTTP/1.1, H2, WebSocket traffic over plain or secure channels
- Fully streamed intermediate as proxy or transparent proxy
- Deflect operating system traffic (act as system proxy)
- Automatic root certificate installation (with elevation on Windows, macOS, and several Linux distributions)
- Certificate management: built-in feature to create CA compatible certificates
- Export as HTTP Archive
- Use a custom root certificate authority
- Choice between default .NET SSL provider and BouncyCastle
- Raw packet capture (with the extension
Fluxzy.Core.Pcap) - NSS Key log extraction (when using Bouncy Castle)
- Optional configuration-based data extraction and alteration
- Impersonation on JA4 fingerprint, H2 settings and Headers
1.2 Alteration and traffic management features
Alteration and traffic management features are available as fluxzy actions. You can browse this dedicated search page to see built-in actions on the latest stable version. Here are a few examples:
- Add, remove, modify request and response headers
- Tranform request and response bodies on the fly
- Mock or substitute request and response body
- Forward, redirect, spoof DNS, abort connections
- Inject html snippet on intercepted request and response bodies
- Remove cache directives, add request and response cookies
- Serve static directory
- Add metadata to HTTP exchanges (tags and comments)
- Provide a specific certificate for a host
2. Quick Usage
2.1 .NET library
2.1.1 Simple usage
The main documentation is available at docs.fluxzy.io. The following shows a very basic usage of the .NET packages.
The main line to begin a capture session is to create a FluxzySetting instance and use it to create a Proxy instance.
Install NuGet package Fluxzy.Core
dotnet add package Fluxzy.Core
Create a top-level statement console app, with .NET 6.0 or above:
using System.Net;
using Fluxzy;
using Fluxzy.Core;
using Fluxzy.Rules.Actions;
using Fluxzy.Rules.Actions.HighLevelActions;
using Fluxzy.Rules.Filters;
using Fluxzy.Rules.Filters.RequestFilters;
using Fluxzy.Rules.Filters.ResponseFilters;
// Create a new setting
var fluxzySetting = FluxzySetting.CreateDefault(IPAddress.Loopback, 8080);
fluxzySetting
.ConfigureRule()
// Forward request
.WhenHostMatch("twitter.com")
.Forward("https://www.google.com/")
// Mock any POST request to /api/auth/token
.WhenAll(
new GetFilter(),
new PathFilter("/api/auth/token", StringSelectorOperation.Contains))
.ReplyJson("{ token: \"your fake key\" }")
// Select wikipedia domains that produces text/html content-type
.WhenAll(
new HostFilter("wikipedia.[a-z]+$", StringSelectorOperation.Regex),
new HtmlResponseFilter()
)
// Inject a CSS after opening head tag
.Do(
// Remove CSP to allow injecting CSS and scripts
new DeleteResponseHeaderAction("Content-Security-Policy"),
new InjectHtmlTagAction
{
Tag = "head",
// Make all pages purple
HtmlContent = "<style>* { background-color: #7155ab !important; }</style>"
}
);
await using var proxy = new Proxy(fluxzySetting);
var endPoints = proxy.Run();
// Register as system proxy, the proxy is restore when the IAsyncDisposable is disposed
await using var _ = await SystemProxyRegistrationHelper.Create(endPoints.First());
// Create a new HttpClient that uses the proxy
var httpClient = HttpClientUtility.CreateHttpClient(endPoints, fluxzySetting);
var responseText = await httpClient.GetStringAsync("https://baddomain.com/api/auth/token");
Console.WriteLine($"Final answer: {responseText}");
Console.WriteLine("Press enter to halt this program and restore system proxy setting...");
Console.ReadLine();
More examples are available at docs.fluxzy.io.
2.2 Fluxzy CLI
b5d51bd2a3f1870beb9607eaba46ac93d959bb15
| Fluxzy CLI | Version |
|---|---|
| Windows | |
| macOS | |
| Linux |
<<<<<<< HEAD
1. Features
To get an exhaustive list of all built-in alteration capabilities, check this dedicated search page.
| Description | Category | Comment |
|---|---|---|
| Deflect OS traffic (act as system proxy) | General | Partially on Linux |
| Automatic root certificate installation (with elevation on Windows, macOS, and several Linux distributions) | General | Partially on Linux |
| Certificate management: built-in feature to create CA compatible certificates | General | |
| Export as HTTP Archive | General | |
| View HTTP(s) traffic in clear text | General | |
Capture raw packets along with HTTP requests (with the extension Fluxzy.Core.Pcap). NSS key log can be automatically retrieved when using Bouncy Castle |
General | |
| Add, remove, modify request and response headers | Application-level alteration | |
| Change request method path, change status code, and host | Application-level alteration | |
| Mock request and response body | Application-level alteration | |
| Forward requests (reverse proxy-like) | Application-level alteration | |
| Remove any cache directives | Application-level alteration | |
| Serve directory as a static website | Application-level alteration | |
| Add request and response cookies | Application-level alteration | |
| Configuration-based data extraction and alteration | Application-level alteration | |
| Add metadata to HTTP exchanges (tags and comments) | Application-level alteration | |
| Support HTTP/1.1, H2, WebSocket on outbound streams | Transport-level alteration | |
| Spoof DNS | Transport-level alteration | |
| Add client certificates | Transport-level alteration | |
| Use a custom root certificate | Transport-level alteration | |
| Use a specific certificate for hosts | Transport-level alteration | With native SSL engine |
| Force HTTP version | Transport-level alteration | |
| Use specific TLS protocols | Transport-level alteration | |
| Use native SSL client (SChannel, OpenSSL,...) or BouncyCastle | Transport-level alteration | |
| Abort connections | Transport-level alteration | |
| ...... | ...... |
2. Basic Usage
2.1 Fluxzy CLI
The following demonstrates the basics of how to use fluxzy with a simple rule file. The "rule file" is a straightforward YAML file containing a list of directives that fluxzy will evaluate during proxying.
Sample usage
fluxzy root commands
```bash
Usage:
fluxzy [command] [options]
Options: -v, --version Show version information -?, -h, --help Show help and usage information
Commands:
start Start a capturing session
cert, certificate Manage root certificates used by the fluxzy
pack
</details>
<details>
<summary><code>fluxzy start</code> options </summary>
```bash
Usage:
fluxzy start [options]
Options:
-l, --listen-interface <listen-interface> Set up the binding addresses. Default value is "127.0.0.1:44344" which
will listen to localhost on port 44344. 0.0.0.0 to listen on all
interface with the default port. Use port 0 to let OS assign a random
available port. Accepts multiple values. [default: 127.0.0.1:44344]
--llo Listen on localhost address with default port. Same as -l
127.0.0.1/44344 [default: False]
--lany Listen on all interfaces with default port (44344) [default: False]
-o, --output-file <output-file> Output the captured traffic to an archive file []
-d, --dump-folder <dump-folder> Output the captured traffic to folder
-r, --rule-file <rule-file> Use a fluxzy rule file. See more at :
https://www.fluxzy.io/resources/documentation/the-rule-file
-sp, --system-proxy Try to register fluxzy as system proxy when started [default: False]
-b, --bouncy-castle Use Bouncy Castle as SSL/TLS provider [default: False]
-c, --include-dump Include tcp dumps on captured output [default: False]
-ss, --skip-ssl-decryption Disable ssl traffic decryption [default: False]
-t, --trace Output trace on stdout [default: False]
-i, --install-cert Install root CA in current cert store if absent (require higher
privilege) [default: False]
--no-cert-cache Don't cache generated certificate on file system [default: False]
--cert-file <cert-file> Substitute the default CA certificate with a compatible PKCS#12 (p12,
pfx) root CA certificate for SSL decryption
--cert-password <cert-password> Set the password of certfile if any
-R, --rule-stdin Read rule from stdin
--parse-ua Parse user agent [default: False]
--use-502 Use 502 status code for upstream error instead of 528. [default: False]
--external-capture Indicates that the raw capture will be done by an external process
[default: False]
--mode <Regular|ReversePlain|ReverseSecure> Set proxy mode [default: Regular]
--mode-reverse-port <mode-reverse-port> Set the remote authority port when --mode ReverseSecure or --mode
ReversePlain is set []
--proxy-auth-basic <proxy-auth-basic> Require a basic authentication. Username and password shall be provided
in this format: username:password. Values can be provided in a percent
encoded format. []
--request-buffer <request-buffer> Set the default request buffer []
-n, --max-capture-count <max-capture-count> Exit after a specified count of exchanges []
-?, -h, --help Show help and usage information
The following highlights the basic way to use fluxzy with an optional rule file. The "rule file" is a straightforward YAML file containing a list of directives that fluxzy will evaluate during proxying.
b5d51bd2a3f1870beb9607eaba46ac93d959bb15
For more detailed documentation, visit fluxzy.io or use the --help option available for each command.
Create a rule.yaml file as follows:
rules:
- filter:
typeKind: requestHeaderFilter
headerName: authorization # Select only requests with authorization header
operation: regex
pattern: "Bearer (?<BEARER_TOKEN>.*)" # A named regex instructs fluxzy
# to extract the token from the authorization
# header into the variable BEARER_TOKEN
action:
# Write the token to a file
typeKind: FileAppendAction # Append the token to the file
filename: token-file.txt # Save the token to token-file.txt
text: "${authority.host} --> ${user.BEARER_TOKEN}\r\n" # user.BEARER_TOKEN retrieves
# the previously captured variable
runScope: RequestHeaderReceivedFromClient # Run the action when the request header
# is received from the client
- filter:
typeKind: anyFilter # Apply to any exchanges
action:
typeKind: AddResponseHeaderAction # Append a response header
headerName: fluxzy
headerValue: Passed through fluxzy
The rule file above performs two actions:
- It extract any BEARER token from the authorization header and write it to a file (`token-file.txt``)
- It appends a response header (
fluxzy: Passed through fluxzy) to all exchanges
For more information about the rule syntax, visit the documentation page. Visit directive search page to see all built-in filters and actions.
Then start fluxzy with the rule file
fluxzy start -r rule.yaml --install-cert -sp -o output.fxzy -c
--install-cert,-sp,-o,-c,-rare optional.-owill save all collected data in a fluxzy file. The file will be created only at the end of the capture session.-spwill make fluxzy act as system proxy. The proxy settings will be reverted when fluxzy is stopped with SIGINT (Ctrl+C). The proxy settings won't be reverted if the fluxzy process is killed.-cwill enable raw packet capture.--install-certwill install the default certificate on the current user. This option needs elevation and may trigger interactive dialogs on certain OS.
You can use the command dissect to read the fluxzy file or, alternatively, you can use Fluxzy Desktop to view it with a GUI.
More command and options are available, including exporting to HAR or managing certificates, you can run --help to see all available options and commands.
By default, fluxzy will bind to 127.0.0.1:44344.
<<<<<<< HEAD
2.2 .NET libraries
A detail documentation is available at docs.fluxzy.io. The following shows a very basic usage of the .NET packages.
The main line to start a capture session is to create a FluxzySetting instance and run it through the Proxy class.
Install NUGET package Fluxzy.Core
dotnet add package Fluxzy.Core
And with .NET 6 or above
using System.Net;
using Fluxzy;
using Fluxzy.Rules;
using Fluxzy.Rules.Actions;
using Fluxzy.Rules.Filters;
var fluxzyStartupSetting = FluxzySetting
.CreateDefault(IPAddress.Loopback, 44344)
.AddAlterationRules(
new Rule(
new AddResponseHeaderAction("X-Proxy", "Passed through fluxzy"),
AnyFilter.Default
));
await using (var proxy = new Proxy(fluxzyStartupSetting))
{
var _ = proxy.Run();
Console.WriteLine("Press any key to exit...");
Console.ReadLine();
}
A more detailed documentation and samples are available at fluxzy.io or in the samples folder of this repository.
Run with docker
The CLI can be run from a docker image.
docker run -it -p 44344:44344 fluxzy/fluxzy:latest start
To test:
curl -x 127.0.0.1:44344 https://www.fluxzy.io
3. Build
3.1 Requirements
- .NET 8.0 SDK
- Git bash if Windows
libpcapor any equivalent library- tests collecting pcap files and installing certificates requires elevation.
- An IDE is not necessary to build the app. For information, this project was developed using both Visual Studio 2022 and JetBrains Rider on Windows, macOS and Linux.
3.2 Build
- Clone the repository
- Run
dotnet build src/Fluxzy.Corefor Fluxzy.Core - Run
dotnet build src/Fluxzy.Core.Pcapfor Fluxzy.Core.Pcap
3.3 Test
- Several tests are run against various private web servers (iis, nginx, kestrel, apache, ...) which is not currently available to the public.
4 Contact
- Use github issues for bug reports and feature requests
- Mail to **project@fluxzy.io** for inquiries
b5d51bd2a3f1870beb9607eaba46ac93d959bb15