Burp suite
From the official website:
- Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing process, from initial mapping and analysis of an application's attack surface, through to finding and exploiting security vulnerabilities.3
Installation
Install burpsuiteAUR from AUR.
Configuration
Burp Proxy will work out of the box with HTTP connections. For HTTPS, PortSwigger's certificate must be installed first.
Install HTTPS certificate in Firefox
Start up Burp:
$ burpsuite
and open the Proxy -> Options. In the Proxy Listeners section add a new interface. Set Interface to 127.0.0.1:8080
and make sure the Running checkbox is enabled.
Navigate to http://127.0.0.1:8080/
in Firefox, click the CA Certificate link at top right and save the certificate file somewhere.
In Firefox open the Preferences window and go to Advanced -> Certificates -> View Certificates. Click Import and select the file. Check the Trust this CA to identify websites checkbox and click OK.