Skip to content
/ httpflow Public
forked from six-ddc/httpflow

A command line utility helps to capture and dump HTTP stream

License

MIT license
0 stars 80 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

forest-code42/httpflow

BranchesTags
 
 

Repository files navigation

httpflow

Installation

MacOs

brew update
brew install httpflow

Linux

Forests oneliner for Amazon Linux 2

yum install -y gcc-c++  libpcap-devel zlib-devel pcre-devel && git clone https://github.com/forest-code42/httpflow.git && cd httpflow &&  make && make install && rm -f /usr/bin/httpflow && mv /usr/local/bin/httpflow /usr/bin/httpflow

Forests oneliner for debian / ubuntu

apt-get install -y g++ libpcap-dev zlib1g-dev libpcre3 libpcre3-dev && git clone https://github.com/forest-code42/httpflow.git && cd httpflow &&  make && make install

Forests oneliner for alpine linux

apk update && apk add make g++ libpcap-dev zlib-dev pcre pcre-dev && git clone https://github.com/forest-code42/httpflow.git && cd httpflow &&  make && make install

## On CentOS
yum update
yum install libpcap-devel zlib-devel pcre-devel

## On Ubuntu / Debian
apt-get update
apt-get install libpcap-dev zlib1g-dev libpcre3 libpcre3-dev
  • Building httpflow
> git clone https://github.com/six-ddc/httpflow
> cd httpflow &&  make && make install

or directly download Release binary file.

Usage

libpcap version libpcap version 1.9.1
httpflow version 0.0.9

Usage: httpflow [-i interface | -r pcap-file] [-u url-filter] [-w output-path] [expression]

  -i interface      Listen on interface, This is same as tcpdump 'interface'
  -r pcap-file      Read packets from file (which was created by tcpdump with the -w option)
                    Standard input is used if file is '-'
  -u url-filter     Matches which urls will be dumped
  -w output-path    Write the http request and response to a specific directory

  expression        Selects which packets will be dumped, The format is the same as tcpdump's 'expression' argument
                    If filter expression is given, only packets for which expression is 'true' will be dumped
                    For the expression syntax, see pcap-filter(7)

  For more information, see https://github.com/six-ddc/httpflow
  • Capture default interface
> httpflow
  • Capture all interfaces
> httpflow -i any
  • Use the expression to filter the capture results
# If no expression is given, all packets on the net will be dumped.
# For the expression syntax, see pcap-filter(7).
> httpflow host httpbin.org or host baidu.com
  • Use the regexp to filter request urls
> httpflow -u '/user/[0-9]+'
  • Read packets from pcap-file
# tcpdump -w a.cap
> httpflow -r a.cap
  • Read packets from input
> tcpdump -w - | httpflow -r -
  • Write the HTTP request and response to directory /tmp/http
> httpflow -w /tmp/http

About

A command line utility helps to capture and dump HTTP stream

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

9 tags

Packages

No packages published

Languages

  • C++ 84.5%
  • C 14.8%
  • Makefile 0.7%