-
-
Notifications
You must be signed in to change notification settings - Fork 750
HelpAddonsSniTerminatorSniTerminator
thc202 edited this page Jun 24, 2015
·
3 revisions
SNI Terminator allows you to use ZAP as a transparent HTTPS proxy for clients which support SNI.
Since ZAP already works pretty well as a transparent HTTP proxy, this allows you to set up a testing LANs (or VMs) where all HTTP and HTTPS traffic is proxied regardless of software settings.
For example, if you have a Linux machine you use for testing, you can do something like the following to forward all HTTP and HTTPS traffic to your ZAP instance running on 192.168.0.14:
iptables -t nat -A OUTPUT -p tcp --dport 443 -j DNAT --to-destination 192.168.0.14:8443 iptables -t nat -A OUTPUT -p tcp --dport 80 -j DNAT --to-destination 192.168.0.14:8080