Have you ever think of, to find out any app API endpoint?

I'm just know about this. I will be doing this in iPhone.

Download mitmproxy

mitmproxy is free & open source.

1
$ brew install mitmproxy

once installed, run it

1
$ mitmweb

it will open up your browser, you will see this

mitmweb

Configure in iPhone

iPhone proxy

  1. Go to Settings -> Wi-Fi, select the Wi-Fi you currently connected. Make sure it's same network with your Mac
  2. Set it to manual
  3. Set the IP of your Mac (you can find it from ifconfig in terminal)

Open Safari in your iPhone

special URL mitm.it

  1. Click on the Apple icon, and install certificate
  2. Go to Settings -> General -> Profile, install mitmproxy profile
  3. Go to Settings -> General -> About -> Certificate Trust Settings, enable full trust for root certificates for mitmproxy

Test it out

All settings is done, now you can try to open an app

mitm request/response

You can see the request header, and response as well