[GH-ISSUE #1671] Support TLS key logging #1664

New issue

Closed

opened 2026-03-03 19:53:18 +03:00 by kerem · 13 comments

kerem commented 2026-03-03 19:53:18 +03:00

Owner

Copy link

Originally created by @seidnerj on GitHub (Jun 7, 2023).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1671

Originally assigned to: @NghiaTranUIT on GitHub.

Description

Support TLS key logging, this can be implemented by Proxyman looking for a "SSLKEYLOGFILE" environment variable as is done in other applications or by some other means (UI-wise).

Why this feature/change is important?

I am trying to debug issues that seem to origin in the communicate between Proxyman and the target server, I am using Wireshark to look at the relevant traffic but unfortunately (in this case) it is encrypted (TLS), if the keys could be logged as in other applications, I could then load them to Wireshark and take a look at the unencrypted traffic. Without this, I have no insight into what is happening between Proxyman and the target server.

Originally created by @seidnerj on GitHub (Jun 7, 2023). Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1671 Originally assigned to: @NghiaTranUIT on GitHub. ## Description Support TLS key logging, this can be implemented by Proxyman looking for a "SSLKEYLOGFILE" environment variable as is done in other applications or by some other means (UI-wise). ## Why this feature/change is important? I am trying to debug issues that seem to origin in the communicate between Proxyman and the target server, I am using Wireshark to look at the relevant traffic but unfortunately (in this case) it is encrypted (TLS), if the keys could be logged as in other applications, I could then load them to Wireshark and take a look at the unencrypted traffic. Without this, I have no insight into what is happening between Proxyman and the target server.

kerem 2026-03-03 19:53:18 +03:00

• closed this issue
• added the
  enhancement
  ✅ Done
  labels

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Jun 8, 2023):

Thanks for opening the ticket. I might consider to implement this feature if we collect more requests 👍

<!-- gh-comment-id:1582692926 --> @NghiaTranUIT commented on GitHub (Jun 8, 2023): Thanks for opening the ticket. I might consider to implement this feature if we collect more requests 👍

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@swznd commented on GitHub (Sep 20, 2023):

agreed, I have similar issue, I need to compare request between app to proxyman and proxyman to target server

<!-- gh-comment-id:1727608930 --> @swznd commented on GitHub (Sep 20, 2023): agreed, I have similar issue, I need to compare request between app to proxyman and proxyman to target server

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@dabing1022 commented on GitHub (Jun 1, 2024):

June 1, 2024. Excuse me, is it supported now?

<!-- gh-comment-id:2143272780 --> @dabing1022 commented on GitHub (Jun 1, 2024): June 1, 2024. Excuse me, is it supported now?

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@novitae commented on GitHub (Jan 8, 2025):

Any news ? @NghiaTranUIT

<!-- gh-comment-id:2577385325 --> @novitae commented on GitHub (Jan 8, 2025): Any news ? @NghiaTranUIT

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Jan 8, 2025):

@novitae To be honest, I don't know how to implement it. Can you show me the current solution from another app?

<!-- gh-comment-id:2577409089 --> @NghiaTranUIT commented on GitHub (Jan 8, 2025): @novitae To be honest, I don't know how to implement it. Can you show me the current solution from another app?

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@novitae commented on GitHub (Jan 8, 2025):

@novitae To be honest, I don't know how to implement it. Can you show me the current solution from another app?

I just took a look at how mitmproxy does it, but their backend is python, so it will be different for you.

What crypto backend are you using ? OpenSSL ? If it is, or any other big one, I'm pretty sure it's easy and there are already methods to make it easier. I am willing to do the researches !

<!-- gh-comment-id:2577544399 --> @novitae commented on GitHub (Jan 8, 2025): > @novitae To be honest, I don't know how to implement it. Can you show me the current solution from another app? I just took a look at [how mitmproxy does it](https://github.com/mitmproxy/mitmproxy/blob/70e59c2d4157f017f09163bc6b33bcd2a8f83594/mitmproxy/net/tls.py#L119C1-L164C1), but their backend is python, so it will be different for you. What crypto backend are you using ? OpenSSL ? If it is, or any other big one, I'm pretty sure it's easy and there are already methods to make it easier. I am willing to do the researches !

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Jan 8, 2025):

@novitae It's what you're looking for?

• mitmproxy does TLSKeyLogging for both way: client -> mitmproxy, and mitmproxy -> servers. Do you need both?

<!-- gh-comment-id:2577593248 --> @NghiaTranUIT commented on GitHub (Jan 8, 2025): @novitae It's what you're looking for?  - mitmproxy does TLSKeyLogging for both way: client -> mitmproxy, and mitmproxy -> servers. Do you need both?

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@novitae commented on GitHub (Jan 8, 2025):

• mitmproxy does TLSKeyLogging for both way: client -> mitmproxy, and mitmproxy -> servers. Do you need both?

Yes usually you have to log both

<!-- gh-comment-id:2577595999 --> @novitae commented on GitHub (Jan 8, 2025): > * mitmproxy does TLSKeyLogging for both way: client -> mitmproxy, and mitmproxy -> servers. Do you need both? Yes usually you have to log both

kerem commented 2026-03-03 19:53:19 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Jan 8, 2025):

thanks. I will add it. What do you do with this file? These secrets don't link with certain domains, so It's hard to know which domain SSL is.

<!-- gh-comment-id:2577619679 --> @NghiaTranUIT commented on GitHub (Jan 8, 2025): thanks. I will add it. What do you do with this file? These secrets don't link with certain domains, so It's hard to know which domain SSL is.

kerem commented 2026-03-03 19:53:20 +03:00

Author

Owner

Copy link

@novitae commented on GitHub (Jan 8, 2025):

thanks. I will add it. What do you do with this file? These secrets don't link with certain domains, so It's hard to know which domain SSL is.

Yes I must admit the way it works I a bit confusing, and I couldn't explain to you how it works to find which key is for which connection, but read this you might understand better:

https://wiki.wireshark.org/TLS#Using%20the%20(Pre)-Master-Secret

<!-- gh-comment-id:2577668152 --> @novitae commented on GitHub (Jan 8, 2025): > thanks. I will add it. What do you do with this file? These secrets don't link with certain domains, so It's hard to know which domain SSL is. Yes I must admit the way it works I a bit confusing, and I couldn't explain to you how it works to find which key is for which connection, but read this you might understand better: https://wiki.wireshark.org/TLS#Using%20the%20(Pre)-Master-Secret

kerem commented 2026-03-03 19:53:20 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Jan 11, 2025):

@novitae @dabing1022 @swznd @seidnerj Good news: TLS Key Logging is officially supported on this Beta build: https://download.proxyman.io/beta/Proxyman_5.12.2_Support_TLS_Key_Logging.dmg

You can access it in the Tool menu -> TLS Key Logging -> Select your File or Folder.

• I prefer using UI because macOS app can't read your system env SSLKEYLOGFILE

<!-- gh-comment-id:2585056180 --> @NghiaTranUIT commented on GitHub (Jan 11, 2025): @novitae @dabing1022 @swznd @seidnerj Good news: TLS Key Logging is officially supported on this Beta build: https://download.proxyman.io/beta/Proxyman_5.12.2_Support_TLS_Key_Logging.dmg You can access it in the Tool menu -> TLS Key Logging -> Select your File or Folder. <img width="617" alt="Screenshot 2025-01-11 at 11 08 12 AM" src="https://github.com/user-attachments/assets/7cdf0d3b-297b-4c55-9b01-cc0e28ca1703" /> - I prefer using UI because macOS app can't read your system env `SSLKEYLOGFILE`

kerem commented 2026-03-03 19:53:20 +03:00

Author

Owner

Copy link

@novitae commented on GitHub (Jan 11, 2025):

Thank you ! I just tried it and decrypted with Wireshark, it works perfectly

<!-- gh-comment-id:2585173129 --> @novitae commented on GitHub (Jan 11, 2025): Thank you ! I just tried it and decrypted with Wireshark, it works perfectly

kerem commented 2026-03-03 19:53:20 +03:00

Author

Owner

Copy link

@seidnerj commented on GitHub (Jan 11, 2025):

This is awesome!!! Thank you so much @NghiaTranUIT! 🙏

<!-- gh-comment-id:2585206488 --> @seidnerj commented on GitHub (Jan 11, 2025): This is awesome!!! Thank you so much @NghiaTranUIT! 🙏

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

6.9.0

6.8.0

6.7.0

6.6.0

6.5.0

6.4.0

6.3.0

6.2.0

6.1.0

6.0.2

6.0.0

6.0.1

5.25.0

5.24.0

5.23.0

5.23.1

5.22.0

5.20.0

5.21.0

5.19.0

5.18.0

5.17.0

5.16.0

5.15.0

5.14.0

5.12.2

5.12.1

5.12.0

5.11.0

5.10.0

5.8.0

5.9.0

5.7.0

5.6.1

5.6.0

5.5.0

5.4.0

5.2.0

5.3.0

5.1.1

5.0.0

4.16.0

4.15.0

4.14.0

4.13.0

4.12.0

4.11.0

4.10.0

4.9.1

4.9.0

4.8.2

4.8.1

4.8.0

4.7.1

4.7.0

4.6.1

4.6.0

4.5.0

4.4.0

4.3.1

4.3.0

4.2.1

4.2.0

4.1.0

4.0.0

3.15.0

3.14.0

3.13.0

3.12.0

3.11.0

3.10.0

3.9.0

3.8.0

3.7.0

3.6.2

3.6.1

3.6.0

3.5.2

3.5.1

3.5.0

3.4.0

3.3.0

3.2.0

3.1.0

3.0.0

2.35.4

2.35.3

2.35.2

2.35.1

2.35.0

2.34.1

2.34.0

2.33.0

2.32.1

2.32.0

2.31.0

2.30.0

2.29.0

2.28.0

2.27.0

2.26.0

2.25.0

2.24.0

2.23.0

2.22.0

2.21.1

2.21.0

2.20.0

2.19.0

2.18.0

2.17.0

2.16.1

2.16.0

2.15.2

2.15.1

2.15.0

2.14.2

2.14.1

2.14.0

2.13.0

2.12.0

2.11.1

2.11.0

2.10.0

2.9.1

2.9.0

2.8.0

2.7.0

2.6.0

2.5.3

2.5.2

2.5.1

2.5.0

2.4.2

2.4.1

2.4.0

2.3.0

2.2.0

2.1.1

2.1.0

2.0.1

2.0.0

1.24.0

1.23.0

1.22.0

1.21.0

1.20.0

1.19.0

1.18.1

1.18.0

1.17.1

1.17.0

1.16.0

1.15.0

1.14.1

1.14.0

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.7

1.4.6

1.4.5.1

1.4.5

1.4.4.1

1.4.4

1.4.3

1.4.2

1.4.1.1

1.4.1

1.4

1.3.9

1.3.8

1.3.7

1.3.6

1.3.5

1.3.4.3

1.3.4.2

1.3.4.1

1.3.4

1.3.3

1.3.2

1.3.1

1.3

1.2

1.1.2

1.1.1

1.1

1.0.3

1.0.2

1.0

0.8.1

0.8

0.7

0.6

0.5.1

0.5

v0.4.1

Labels

Clear labels   

Discussion

  

Feature request

  

In Progress...

  

Plugins

  

Waiting response

  

Windows

  

Windows

  

bug

  

duplicate

  

enhancement

  

feature

  

good first issue

  

iOS

  

macOS 10.11

  

question

  

wontfix

  

✅ Done

No labels

Discussion

Feature request

In Progress...

Plugins

Waiting response

Windows

Windows

bug

duplicate

enhancement

feature

good first issue

iOS

macOS 10.11

question

wontfix

✅ Done

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/Proxyman#1664

No description provided.