httap
Launch Arc browser through httap with automatic proxy configuration and certificate handling for traffic interception.
Launch Brave browser through httap with automatic proxy configuration and certificate handling for traffic interception.
Automatically routes HTTP requests from Bun through the httap proxy for capture and inspection.
Automatically routes curl requests through the httap proxy for interception.
Automatically routes HTTP requests from Deno through the httap proxy for capture and inspection.
Launch Firefox browser through httap with automatic proxy configuration and certificate handling for traffic interception.
Automatically routes Git HTTP operations through the httap proxy for capture and inspection.
Launch LibreWolf browser through httap with automatic proxy configuration and certificate handling for traffic interception.
Automatically routes .NET HttpClient requests through the httap proxy for capture and inspection.
Automatically routes Node.js HTTP requests through the httap proxy for capture and inspection.
Automatically routes PHP HTTP requests through the httap proxy via environment variables for capture and inspection.
Automatically routes Python HTTP requests through the httap proxy via environment variables for capture and inspection.
Automatically routes Ruby HTTP requests through the httap proxy via environment variables for capture and inspection.
Automatically routes Rust (reqwest) HTTP requests through the httap proxy for capture and inspection.
Launch Vivaldi browser through httap with automatic proxy configuration and certificate handling for traffic interception.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@httaplist the last 5 requests to /users"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
httap
httap is a powerful HTTP proxy for your terminal. Intercept, inspect & rewrite HTTP traffic — from your shell or your AI agent.

Feature Highlights
Project-scoped — each project gets its own
.httap/directory with isolated daemon, database, CA cert and interceptors. No cross-project bleed.Multiple surfaces — powerful CLI for scripting, a lazygit-style TUI for browsing traffic, an MCP server for AI agents, and a Node.js API for programmatic access.
Interceptors — mock, modify or observe traffic by writing TypeScript. Your AI agent can write these for you, so you can express complex scenarios in natural language.
Related MCP server: httptoolkit-mcp
Quick Start
npm install -g @mtford/httap
# Configure environment e.g. HTTP_PROXY
eval "$(httap on)"
# Send a request
curl https://api.example.com/users
# Open UI
httap tui
# Add MCP server to your AI tool
claude mcp add httap -- httap mcpBrowser Interception
Launch any browser pre-configured to route through httap — no manual proxy setup, no certificate warnings:
# Auto-detect and launch your default browser
httap browser
# Open a specific URL
httap browser https://example.com
# Choose a specific browser
httap browser --browser firefox
httap browser --browser braveEach browser session gets its own isolated profile and is automatically attributed in the TUI (e.g. source: chrome). Close the browser or press Ctrl+C to stop — the temp profile is cleaned up automatically.
Supported browsers:
Engine | Browsers |
Chromium | Chrome, Brave, Edge, Vivaldi, Arc, Chromium |
Firefox | Firefox, Zen Browser, LibreWolf |
Project Scoping
httap doesn't use a global system proxy. Each project gets its own .httap/ directory in the project root (detected by .git or an existing .httap/):
your-project/
├── .httap/
│ ├── interceptors/ # TypeScript interceptor files
│ ├── config.json # Optional project config
│ ├── proxy.port # Proxy TCP port
│ ├── control.sock # IPC socket
│ ├── requests.db # Captured traffic
│ ├── ca.pem # CA certificate
│ └── daemon.pid # Process ID
└── src/...Separate daemon, database, certificates etc. You can run httap in multiple projects at the same time without them interfering with each other.
For non-project contexts or custom setups, use --config to point directly at a data directory (no .httap appended):
httap --config /tmp/my-httap-data onSee CLI Reference for the full resolution order (--config > --dir > auto-detect).
MCP Integration
httap has a built-in MCP server that gives AI agents full access to your captured traffic and interceptor system.
Setup
Claude Code:
claude mcp add httap -- httap mcpCodex:
codex mcp add httap -- httap mcpCursor — add to .cursor/mcp.json:
{
"mcpServers": {
"httap": {
"command": "httap",
"args": ["mcp"]
}
}
}Other MCP clients (Windsurf, etc.) — add to your client's MCP config:
{
"mcpServers": {
"httap": {
"command": "httap",
"args": ["mcp"]
}
}
}The proxy must be running (eval "$(httap on)") — the MCP server connects to the same daemon as the TUI.
Available Tools
Tool | Description |
| Daemon status, proxy port, request count |
| Search and filter captured requests |
| Full request details by ID (headers, bodies, timing) |
| Full-text search through body content |
| Extract values from JSON bodies via JSONPath |
| Count matching requests |
| Delete all captured requests |
| List active proxy sessions |
| List loaded interceptors with status and errors |
| Reload interceptors from disk |
See full MCP documentation for filtering, output formats, and examples.
Interceptors
TypeScript files in .httap/interceptors/ that intercept HTTP traffic as it passes through the proxy. They can return mock responses, modify upstream responses, or just observe.
import type { Interceptor } from "@mtford/httap/interceptors";
export default {
name: "mock-users",
match: (req) => req.path === "/api/users",
handler: async () => ({
status: 200,
headers: { "content-type": "application/json" },
body: JSON.stringify([{ id: 1, name: "Alice" }]),
}),
} satisfies Interceptor;See full interceptors documentation for modify, observe, querying past traffic, handler context, and how they work.
How It Works
┌─────────────────────────────────────────────────────────────┐
│ Your Shell │
│ ┌─────────────────────────────────────────────────────┐ │
│ │ curl, wget, node, python... │ │
│ │ │ │ │
│ │ ▼ │ │
│ │ HTTP_PROXY=localhost:54321 │ │
│ └─────────────────────────────────────────────────────┘ │
│ │ │
└──────────────────────────┼──────────────────────────────────┘
▼
┌─────────────────────────────────────────────────────────────┐
│ httap daemon │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ │
│ │ MITM Proxy │───▶│ SQLite │◀───│ Control API │ │
│ │ (mockttp) │ │ requests │ │ (unix sock) │ │
│ └─────────────┘ └─────────────┘ └─────────────┘ │
└─────────────────────────────────────────────────────────────┘
▲
│
┌──────────────────────────┼──────────────────────────────────┐
│ httap tui │ │
│ ┌───────────────────────┴─────────────────────────────┐ │
│ │ ● POST /api/users │ POST https://api.example.com │ │
│ │ GET /health │ Status: 200 │ Duration: 45ms │ │
│ │ POST /login │ │ │
│ │ │ Request Headers: │ │
│ │ │ Content-Type: application/ │ │
│ └─────────────────────┴───────────────────────────────┘ │
└─────────────────────────────────────────────────────────────┘eval "$(httap on)" starts a daemon, sets HTTP_PROXY/HTTPS_PROXY in your shell, and captures everything that flows through. eval "$(httap off)" unsets them. The TUI connects to the daemon via Unix socket.
Environment Variables
eval "$(httap on)" sets these in your shell (eval "$(httap off)" unsets them):
Variable | Purpose |
| Proxy URL for HTTP clients |
| Proxy URL for HTTPS clients |
| CA cert path (curl, OpenSSL) |
| CA cert path (Python requests) |
| CA cert path (curl/Python fallback) |
| CA cert path (Node.js) |
| CA cert path (Deno) |
| CA cert path (Rust Cargo) |
| CA cert path (Git) |
| CA cert path (AWS CLI) |
| Proxy URL (PHP CGI, HTTPoxy-safe) |
| UUID identifying the current session |
| Session label (when |
Additionally, httap on sets PYTHONPATH, RUBYOPT, and PHP_INI_SCAN_DIR to load runtime-specific override scripts that ensure edge-case HTTP clients trust the proxy CA.
Configuration
Create .httap/config.json to override defaults:
{
"maxStoredRequests": 5000,
"maxBodySize": 10485760,
"maxLogSize": 10485760,
"pollInterval": 2000
}See full configuration documentation for details on each setting.
Supported HTTP Clients
Anything that respects HTTP_PROXY works. httap sets the right CA cert env vars for each runtime automatically.
Works automatically (env vars only):
Client | Support |
curl | Automatic |
wget | Automatic |
Go ( | Automatic |
Rust (reqwest) | Automatic |
.NET ( | Automatic |
Deno | Automatic ( |
Bun | Automatic ( |
Git | Automatic ( |
AWS CLI | Automatic ( |
Cargo | Automatic ( |
Works with httap overrides (injection scripts):
Client | Mechanism |
Node.js (fetch, axios, etc.) |
|
Python (requests, httplib2) |
|
Ruby (Net::HTTP, gems) |
|
PHP (curl, streams) |
|
Not currently supported (needs system-level config):
Runtime | Reason |
Java/JVM | Needs |
Swift | Uses macOS Keychain only |
Dart/Flutter | Requires code changes for proxy |
Elixir/Erlang | Requires code changes for proxy |
TUI
j/k to navigate, Tab to switch panels, / to filter, e to export, Enter to inspect bodies, q to quit. Mouse support included.
See full TUI documentation for all keybindings and export features.
Documentation
CLI Reference — all commands, flags, and examples
Interceptors — mock, modify, observe, query traffic, handler context
MCP Integration — tools, filtering, output formats, examples
TUI — keybindings, export features
Configuration —
.httap/config.jsonoptions
Development
git clone https://github.com/mtford90/httap.git
cd httap
npm install
npm run build # Compile TypeScript
npm test # Run all tests
npm run typecheck # Type checking only
npm run lint # ESLint
npm run dev # Watch modeTroubleshooting
Certificate errors
httap sets common CA environment variables automatically, but some tools need manual configuration:
cat .httap/ca.pemDaemon won't start
Check if something else is using the socket:
httap status
httap daemon stop
eval "$(httap on)"Requests not appearing
Your HTTP client needs to respect proxy environment variables.
There are workarounds implemented for node - e.g. fetch override. Other libraries in different environments may need a similar treatment.
Acknowledgements
httap is built on top of MockTTP by Tim Perry, the same MITM proxy engine that powers HTTP Toolkit.
Licence
MIT
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/mtford90/httap'
If you have feedback or need assistance with the MCP directory API, please join our Discord server