httpry

httpry is a specialized packet sniffer that is specifically designed to display and log HTTP traffic efficiently.

It is not intended to perform analysis directly. Instead, its purpose is to capture, parse, and log the traffic for analysis at a later time.

It can be executed in real-time, showing the traffic as it is being parsed. Alternatively, it can operate as a daemon process that logs the data to an output file.

It is designed to be as lightweight and flexible as possible, allowing for easy adaptation to various applications.

What can you do with it? - Monitor the online requests made by users on your network. - Verify the correct configuration of your server (or identify any misconfigurations). - Analyze patterns in HTTP usage. - Keep an eye out for potentially harmful downloaded files. - Ensure that HTTP policies are being enforced on your network. - Extract HTTP statistics from saved capture files. - It's simply enjoyable to observe in real-time. Here’s an example of the log file output using the default output format string: # httpry version 0.1.8 # Fields: timestamp, source-ip, dest-ip, direction, method, host, request-uri, http-version, status-code, reason-phrase 2009-01-12 15:02:31 192.168.0.16 209.85.171.103 > GET www.google.com / HTTP/1.1 - - - 2009-01-12 15:02:31 192.168.0.16 209.85.171.103 > GET www.google.com / HTTP/1.1 - - - 2009-01-12 15:02:32 192.168.0.16 209.85.171.103 > GET www.google.com / HTTP/1.1 - - - 2009-01-12 15:02:33 192.168.0.16 209.85.171.103 > GET www.google.com / HTTP/1.1 - - - 2009-01-12 15:02:33 209.85.171.103 192.168.0.16