Free https proxyweb software for linux

Spike Proxy is an open source HTTP proxy for finding security flaws in web sites.

SPIKE Proxy is part of the Spike Application Testing Suite and supports automated SQL injection detection, web site crawling, login form brute forcing, overflow detection, and directory traversal detection.

To Use:

python spkproxy.py [ optional port argument, 8080 is default ]
Then set up your browser to use that port for both HTTP and
HTTPS proxies.

Then watch the traffic go!

HTTPManifold is an application for tunnelling Web/HTTP traffic for multiple servers through a single IP address (a reverse proxy). HTTPManifold is intended for home users and small businesses so that they can host multiple domains and sub-domains through a single IP address on port 80.
HTTPManifold forwards traffic to other machines, logs requests, and rewrites content during the process. It can also log the raw content of requests for the purpose of debugging Web services, etc. It provides a Web interface for configuration and log viewing with some log analysis capabilities.
Main features:
- Ability to service HTTP request on any port.
- Allow SSL connections and therefore provide HTTPS to server that otherwise dont support it.
- Forward HTTP requests to any IP address on any port using HTTP or HTTPS.
- Rewrite HTTP headers and body during forward translation.
- Log raw HTTP request and response bytes for debugging purposes.
- Serve static HTML pages.
- Provide web interface to HTTPManifold configuration options.
Enhancements:
- This release adds the ability to forward requests to a sub-path on a destination server.
- It adds options to do simple string replacement when processing response content.
- The appearance of the Web interface has been updated.
- HSQLDB support has been added for enhanced request logging.
- X-forwarded-for header support has been added so that destination servers can see the source IP address.
- Some of the forwarding implementation has been touched up to improve performance and fix small defects.

HttpdBase4J is an embeddable Java web server framework that supports HTTP, HTTPS, templated content and serving content from inside an archive.

The classes are easy to extend as they utilize the Hollywood dont call us, well call you principle to allow the user to overide the framework behaviour during all the different phases of the HTTP transaction.

Note:HttpdBase4J uses the Java 6 com.sun.net.httpserver classes so it wont currently work under earlier versions of Java.

Usage Examples:

The simplest use case is to create an embedded web server on port 8088 with its home directory at htdocs in the local filesystem and a root url at / ie / maps onto htdocs:

homeDir = new java.io.File("./htdocs");
httpd = new FileHttpd(homeDir, 10); // Creates a server with a threadpool of 10
httpd.setLogger(System.err); // Log to console
httpd.start(8088, "/");

Creating a HTTPS server equivalent the the HTTP server above requires passing a keystore and password to start. Passing null will generate a certificate free keystore if you only need the encryption capabilities of HTTPS and not the certificate capability:

httpd = new FileHttpd(homeDir, 10);
m_httpd.start(8089, "/", keystore, password);

Serving content from inside an archive or from a jar or zip in the Java classpath requires creating an ArchiveHttpd instance instead of a FileHttpd. To serve content located in a jar or zip in the class path you need only specify the resource directory in the classpath where the content islocated, for example:

httpd = new ArchiveHttpd("/resources/htdocs", 10);
httpd.start(8088, "/");

To serve content from within a specific archive specify the archive as a Java File when constructing the ArchiveHttpd:

httpd = new ArchiveHttpd(new File("content.zip"), "/resources/htdocs", 10);
httpd.start(8088, "/");

Creating web content using templates is also supported. Currently only the StringTemplate library (http://www.stringtemplate.org) is is supported but it should be relatively easy to create user derived classes for other template implementations. To create an HTTP embedded web server on serving templated content from resources/htdocs in the classpath and having a template file handler (A Java class implenting the Templatable interface that is used to fill the templates) in net.homeip.donaldm.test.templates.

httpd = new ArchiveHttpd("resources/htdocs", 10);

StringTemplateHandler stHandler = new ArchiveStringTemplateHandler(httpd,
"net.homeip.donaldm.test.templates");

httpd.addHandler(".st", stHandler); // .st extension = template files
httpd.start(m_port, "/");

The HTTP transaction handling can be customized at any point by overiding any of the methods in the HttpHandleable interface or by overiding onCreateRequestHandler in Httpd in order to provide your own request handler. A simple example of overiding HttpHandleable methods:

httpd = new TestOverideHttpd(m_homeDir, 10);
httpd.start(m_port, "/");

class TestOverideHttpd extends FileHttpd
{
public HttpResponse onServeHeaders(long id, HttpExchange ex, Request request)
{
//Create or amend content
}
public InputStream onServeBody(long id, HttpExchange ex, Request request)
{
//Return amended or created content
}
}

Antispyd is a HTTP/HTTPS proxy server designed to be fast, efficient, modular and secure. Its written in pure C and uses a simple and customizable configuration file. Its POSIX compliant and has been developed under Gentoo/Linux.
The server is designed with a modular software architecture, the following filters can be used and configured independently :
Url Filtering
Mime-type Filtering
Web-Identity Masking
Shellcode and Zero-day threat Filtering
Cookie Removal
Simple Signature based Filtering
Inappropriate content Blocking
Pop-up Deleting
So, Antispyd can be used to satisfy some current companys security needs like :
Web Usage Policy establishment
Instant Messaging control
Peer-to-Peer Filtering
Malware Protection
Enhancements:
- This release provides a major improvement of the signature based filtering engine (the BLOCK_SIGN filter) in terms of both performance and functionality.
- The signatures are now stored in a 3-Tree to enhance the matching of each HTTP message.
- This filtering can be performed on each HTTP messages content.
- A signature can use the hexadecimal array of a byte to specify a fields value

Net::OpenSRS project is a wrapper interface to the DNS portions of the Tucows OpenSRS HTTPS XML API.

The client library distributed by OpenSRS can be difficult to integrate into a custom environment, and their web interface becomes quickly tedious with heavy usage. This is a clean and relatively quick library to perform the most common API methods described in the OpenSRS API documentation.

Examples

use Net::OpenSRS;

my $key = Your_API_Key_From_The_Reseller_Interface;
my $srs = Net::OpenSRS->new();

$srs->environment(live);
$srs->set_key( $key );

$srs->set_manage_auth( manage_username, manage_password );

my $cookie = $srs->get_cookie( spime.net );
if ($cookie) {
print "Cookie: $cookien";
} else {
print $srs->last_response() . "n";
}

# do a batch of domain locks
$srs->bulk_lock([ example.com, example.net, ... ]);

# renew a domain
my $result = $srs->renew_domain( example.com );
...

WebTst is a Web development test infrastructure. It aims to simplify testing by implementing an HTTP and HTTPS capture engine: a Web proxy which records a testers actions using any Web browser and then replays them during testing.
It comes with support for cookie handling, HTTP authentication, concurrency testing, digital certificates, and a number of simple tests, such as cookie setting, pattern matching, response status, and many others.
It also provides the concept of result analyzer components and capabilities for maintaining smoke and regression test suites.
Enhancements:
- This is a major bugfix release, and upgrading is highly recommended for existing users.
- Support was added for XML::Dumper 0.4 (backwards compatibility) and above, and an upgrade script was developed.
- Major fixes were made to handling of interceptor responses (content transfer chunking, status 100 handling).
- Post body content storage was reworked to allow for binary data types.
- The dashboard interface was reworked to allow downloading and viewing of post bodies.
- Interceptor was fixed to properly capture HTTPS hostnames.
- A minor fix was made to the playback_results directory location when running multiple recordings via suiteRunner.pl.

Virtual Appliances are nano-sized virtual machines with Web user interfaces for deploying instant infrastructure and applications.
The are Gentoo Linux based and optimized for use in VMware.
Summary Instructions for using the Base Virtual Appliance
Download the Virtual Appliance.
If you do not have VMware Player, Workstations, Server, GSX, or ESX, Download VMware Virtual Player or VMware Virtual Server and install it.
Unpack the Virtual Appliance zip or tar.bz2 file.
Use your VMWare product to open and run the VirtualAppliancesBase.vmx file
Observe your VMWare console. The Virtual Appliance IP address will be printed there.
Using your Web Browser, open the Virtual Appliance Management console at https://your_ipaddress:8000/
The Mangement console listens on port 8000 and uses https.
Login to the admin console. The factory username:password is admin:admin.
Change the admin password to something secret through Configuration|Authentication
Enter shared storage information in Configuration|Storage
Your shared storage files will now be available via the webserver on the Virtual Appliance at http://your_ipaddress
Enhancements:
- This is a new Virtual Appliance featuring an instant PostgreSQL server and phpPgAdmin.
- It is a fully self contained Virtual Appliance, only 14MB to download, and ready to use with no configuration.

Ettercap is a network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like SSH and HTTPS). Data injection in an established connection and filtering on the fly is also possible, keeping the connection synchronized.

Many sniffing modes were implemented to give you a powerful and complete sniffing suite. Plugins are supported. It has the ability to check whether you are in a switched LAN or not, and to use OS fingerprints (active or passive) to let you know the geometry of the LAN.