Close the application and restart it again (there is one request that we want to see). First request is a weird one. It is asking the server for the current date and time via a GET request to http://appmanager.filehippo.com/api/v1/DateTime. Get DateTime 1 2 3 4 5 6 7 8 9 10 11 GET /api/v1/DateTime HTTP/1.1 User-Agent: download_manager ClientId: 4dfe2b82-501c-4324-83ce-6d49a96cdf61 AppManagerVersion: 2.0.0.392 AccessToken: 2N0+YwVnSXph9L0ZuS8zOmnSvvKHq10QYMtuM0GdUVmLp067RfBBpw== RequestTime: 2016-05-17T04:47:25.3968037Z Host: appmanager.filehippo.com Connection: close Response body: {“DateTime”:“2016-05-17T04:47:57.

I have talked a lot about this and that but have done nothing in action. Now I will talk about proxying actual applications. I will start with something easy, the FileHippo App Manager. This app was chosen because it can be proxied with Burp, it does not use TLS and it has its own proxy settings (also works with Internet Explorer proxy settings). The requests are pretty simple to understand. I like the FileHippo website because it archives old versions of software.

I have decided to learn Go (or Golang). I went through the Tour of Go and made some notes. Some of the items/code are directly copy pasted from there. The notes are just a cheatsheet to help me look things up quickly while learning. I will update that page as I learn more. You can see the notes at https://parsiya.net/go/.

Let’s do something simple first, we want to redirect anything that goes to 127.0.0.1:8888 to Google.com:443. Open an admin command prompt and run this command (protocol=tcp is optional because Portproxy only supports TCP): netsh interface portproxy add v4tov4 listenport=9090 listenaddress=127.0.0.1 connectaddress=216.58.217.78 connectport=443 protocol=tcp Remember to remove the new line (I have split the command into two lines for better readability). This command creates a listener on localhost:9090 and forwards all traffic to 216.

I thought I had found the Windows iptables with Portproxy but I was wrong. But I learned something neat in the process and I am documenting it to access it when I need it. Portproxy allows you to listen on a certain port on one of your network interfaces (or all interfaces) and redirect all traffic to that interface (on your computer) to another port/IP address. The to that interface is the limitation that unfortunately kills it.