projectdiscovery

projectdiscovery/proxify

Go MIT Security

A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.

3k stars
265 forks
recent
GitHub

3k

Stars

265

Forks

5

Open issues

22

Contributors

v0.0.16 29 Aug 2025

AI Analysis

Proxify is a portable HTTP/HTTPS proxy tool written in Go that captures, manipulates, and replays network traffic with support for MITM interception, upstream proxies, and DSL-based filtering. It serves security researchers, penetration testers, and developers who need to inspect and modify traffic on the fly, with particular strength in integration with tools like Burp Suite for traffic replay and analysis.

Security Security Tool Discovery value: 4/10
Documentation 7/10
Activity 9/10
Community 8/10
Code quality 5/10

Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.

Overall score 7/10

AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.

http-proxy mitm traffic-capture security-testing go
Actively maintained MIT licensed Niche/specialized use case Production ready
Deep Analysis · Based on README and public signals
7d ago

Go proxy for HTTP/HTTPS traffic capture and replay, designed for security professionals and penetration testers

Proxify is a command-line proxy tool written in Go that captures, filters, manipulates, and replays HTTP/HTTPS traffic. Built by ProjectDiscovery, it targets security researchers and penetration testers who need portable, scriptable traffic interception without heavy dependencies. It offers DSL-based request/response filtering, TLS MITM capabilities, upstream proxy chaining, and integration with tools like Burp Suite. The project maintains steady activity and modest but stable adoption within the security tooling community.

Origin

Created November 2020 by ProjectDiscovery (the team behind Nuclei and other reconnaissance tools), Proxify entered a mature category dominated by mitmproxy and commercial proxies. The project emerged as part of ProjectDiscovery's ecosystem of lightweight, Go-based security utilities designed for rapid deployment and integration into automated workflows.

Growth

Stars grew to ~3,000 over 5+ years, reflecting modest but consistent adoption. The last push on 2026-06-22 confirms active maintenance. Growth appears driven by adoption within the penetration testing and bug bounty communities rather than broad appeal; the tool benefits from ProjectDiscovery's brand and ecosystem integration (replayability to Burp, compatibility with other ProjectDiscovery tools). Recent star velocity (4 stars in 7 days as of 2026-07-04) suggests slow, stable interest rather than explosive growth.

In production

Adoption not verified through explicit case studies or public deployments mentioned in README. Evidence of intended production use includes: Docker Hub distribution (mentioned in badges, suggesting containerized deployment); Burp Suite integration (implying use by pentesting teams); native CA/certificate support and upstream proxy chaining (indicating enterprise compatibility). However, no public statements from organizations, no documented large-scale usage, no comparative benchmarks against mitmproxy or alternatives provided. ProjectDiscovery's reputation suggests internal/community usage, but scale and breadth are unclear.

Code analysis
Architecture

Based on README, Proxify implements: HTTP/HTTPS proxy with TLS MITM, embedded DNS server, plugin architecture for protocol decoding, DSL engine for request/response matching and replacement, support for upstream proxy chaining (HTTP and SOCKS5). Built in Go, deployed as single binary. README indicates support for non-HTTP traffic interception and 'invisible client' proxying, suggesting deeper packet-level handling likely beyond simple HTTP proxying.

Tests

Not documented in README. No mention of testing approach, CI/CD, or test suite visibility.

Maintenance

Last push 2026-06-22 (12 days before analysis date) indicates active maintenance. Repository shows 3,049 stars and 265 forks with steady contributor involvement implied by release availability. No evidence of neglect or stagnation; however, slow star growth (4 in last 7 days) and moderate fork count suggest niche rather than mainstream adoption.

Honest verdict

ADOPT IF: you are a penetration tester or security researcher needing a portable, scriptable HTTP/HTTPS proxy with DSL filtering and Burp integration; you work in ProjectDiscovery's ecosystem or prefer Go-based tools; you need transparent proxy deployment without Python runtime dependencies. AVOID IF: you need a feature-rich interactive debugging UI (mitmproxy is superior); you require extensive plugin marketplace or community extensions; your use case demands proven production scale evidence before committing. MONITOR IF: you are evaluating lightweight proxy solutions for CI/CD security scanning; you use ProjectDiscovery tools and want native integration; you prefer Go tooling and adoption evidence grows in the security community.

Independent dimensions

Mainstream potential

3/10

Technical importance

6/10

Adoption evidence

4/10

Risks
  • Adoption scope is not quantified: no public user surveys, no adoption metrics beyond star count, making it unclear whether real-world deployment is broad or concentrated in small communities.
  • Test coverage and quality assurance practices not documented in README; potential gaps in reliability assurance relative to mitmproxy's mature test suite.
  • Single-vendor dependency: ProjectDiscovery maintains the project; loss of interest or organizational change could stall development, though current maintenance signals are strong.
  • TLS MITM complexity may introduce security edge cases; README does not describe security audit history or threat model validation.
  • DSL language not documented in README excerpt; adoption may be hindered if DSL syntax is unintuitive or underdocumented relative to Python scripting alternatives.
Prediction

Proxify will likely remain a niche but viable tool within the penetration testing and security automation communities, with steady maintenance but modest growth. Unlikely to challenge mitmproxy's dominance due to lack of interactive UI and smaller ecosystem, but will grow incrementally as ProjectDiscovery's ecosystem matures and Go adoption increases in security tooling.

0 found this helpful

Newsletter

Get analyses like this every Monday

Free weekly digest of the most interesting open-source discoveries.

Languages

Go
94.2%
HTML
5.1%
Makefile
0.4%
Dockerfile
0.3%

Information

Language
Go
License
MIT
Last updated
3w ago
Created
68mo ago
Analyzed with
anthropic/claude-haiku-4-5

Stars over time

Loading…

Contributors over time

Top 100 contributors only — repos with more will plateau at 100.

Loading…

Similar repos

projectdiscovery

projectdiscovery/httpx

httpx is a fast, multi-purpose HTTP toolkit designed for security professionals...

10.1k Go Security
snail007

snail007/goproxy

GoProxy is a high-performance proxy server written in Go that supports HTTP(S),...

17k Go DevOps
mitmproxy

mitmproxy/mitmproxy

mitmproxy is an interactive, TLS-capable intercepting HTTP proxy with console,...

44.2k Python Security
InterceptSuite

InterceptSuite/ProxyBridge

ProxyBridge is a lightweight, open-source proxy client that redirects TCP and...

5.4k C Security
kevwan

kevwan/tproxy

tproxy is a TCP connection proxy and analyzer for developers monitoring network...

3.7k Go Dev Tools
vs. alternatives
mitmproxy

Market leader with 44k stars; Python-based with rich UI, massive plugin ecosystem, and decades of maturity. Proxify competes on portability (single Go binary vs Python runtime), speed, and scriptability via DSL rather than Python; mitmproxy dominates in interactive debugging and visual features.

goproxy (snail007)

Go-based general-purpose proxy with 17k stars; broader scope (SOCKS, HTTP, tunnel protocols). Proxify is more specialized for HTTP/HTTPS traffic manipulation and security workflows; goproxy targets infrastructure/networking use cases.

httpx (ProjectDiscovery)

ProjectDiscovery's own tool for HTTP probing with 10k stars. Httpx focuses on reconnaissance; Proxify handles active traffic interception. Both serve security workflows but are complementary rather than competitive.

ProxyBridge (InterceptSuite)

C-based with 5.3k stars, appears to target similar security tooling niche. Proxify's Go implementation likely offers easier deployment and maintenance; C version may offer lower-level control.

tproxy (kevwan)

Go proxy with 3.7k stars focused on transparent proxying. Similar adoption scale to Proxify; tproxy appears more general-purpose while Proxify emphasizes HTTP/HTTPS and replay workflows.