zapproxy/burp possible?

[r3k2]

Hello will it be possible for me to add extended functionality to act in basic ways as zap proxy or Burp? I am looking for libraries to create a interceptor proxy where a penetration tester could intercept the GET/POST verbs with full headers before it gets to the remote server, modify it or inspect them, the return before it hits a browser also inspecting what is return back from the server. Thanks

[r3k2]

bump

[elazarl]

It's a library, should be possible. You just need to add BURP functionality in suitable places.

…

On Fri, Aug 3, 2018 at 10:38 PM Fernandez, ReK2 ***@***.***> wrote: bump — You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub <#305 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AAP4ovtH1SDf3bCqn52R_N2gRiB61R2cks5uNKbNgaJpZM4VrqZE> .

[ErikPelli]

#607 adds the functionality to keep the original header names, without canonicalization.
If you are interested about the header ordering, currently it's not possible with this library.
Feel free to fork it or propose changes with new issues about specific features and the related pull requests.