This document discusses using Mitmproxy as a proxy to debug API requests and responses. It provides instructions for installing Mitmproxy and viewing requests. It also discusses using Nginx as a hybrid proxy, providing steps to check out and configure the Nginx configuration files to route requests to backend servers. Finally, it includes a Mitmproxy script that rewrites host and port values for HTTP requests to www.duitang.com to route them to the local Nginx server instead.

1. Mitmproxy Usage
v20141216 @3D

2. Question
• Debug API Request / Response
• Replay API Request / Response

3. Workflow
APP
Device
Proxy
Proxy

4. Install Mitmproxy
• apt-get install mitmproxy
• mitmproxy -p 3128

5. View Request

7. Question
• Japa / Titan / Vienna / Mandala? Which to use?
• Hybrid!

8. Workflow
APP
Device
Proxy
Proxy
Nginx
Hybrid
Japa etc…Titan

9. Get hybrid nginx
• svn checkout svn://devbox.in/trunk/conf/nginx
• cd /etc/nginx/
• ln -s ~/nginx/log_format.conf /etc/nginx/conf.d/
• ln -s ~/nginx/servers/hybrid.conf /etc/nginx/my_conf.d/
• cp ~/nginx/servers/www.duitang.com.conf sites-enabled/
• cp ~/nginx/servers/backend_product.conf .
• sed -i 's/ssl.*$//g' sites-enabled/www.duitang.com.conf
• sed -i 's/servers/hybrid/my_conf.d/hybrid/g' sites-enabled/www.duitang.com.conf
• sed -i 's/proxy_pass.*/proxy_pass http://p.s.duitang.com;/g' backend_product.conf
• sed 's/limit_req.*//g' backend_product.conf
• mkdir -p /duitang/logs/usr/nginx/

10. Mitmproxy script
# coding=utf-8
def request(context, flow):
if 'www.duitang.com' in flow.request.host:
if flow.request.scheme == "http":
flow.request.host = "127.0.0.1"
flow.request.port = 80
## mitmproxy -p 3128 -s ~path/mitm_lo_nginx.py

11. Links
• https://mitmproxy.org/ (GFW fucked)
• http://wiki.nginx.org/Main