LinuxCommandLibrary

httpflow

TLDR

Capture HTTP traffic on interface

$ sudo httpflow -i [eth0]
copy
Filter by port
$ sudo httpflow -i [eth0] 'port 80'
copy
Save to file
$ sudo httpflow -i [eth0] -w [output]
copy
Read from pcap
$ httpflow -r [capture.pcap]
copy

SYNOPSIS

httpflow [options] [filter]

DESCRIPTION

httpflow captures and displays HTTP traffic in real-time. It reconstructs HTTP requests and responses from network packets.
The tool is useful for debugging, monitoring, and analyzing web traffic. It displays headers, bodies, and request/response pairs.
httpflow captures HTTP network traffic.

PARAMETERS

FILTER

BPF filter expression.
-i INTERFACE
Network interface.
-r FILE
Read from pcap file.
-w DIR
Write output directory.
-u URL
Filter by URL pattern.
-d
Print debug info.
--help
Display help information.

CAVEATS

Requires root for live capture. Cannot decode HTTPS. Privacy considerations apply.

HISTORY

httpflow was created as a tool for real-time HTTP traffic analysis and debugging.

SEE ALSO

tcpdump(1), wireshark(1), mitmproxy(1)

Copied to clipboard