[GH-ISSUE #1949] The "Host" field in the request header is forcefully modified #1941

New issue

Open

opened 2026-03-03 19:55:38 +03:00 by kerem · 4 comments

kerem commented 2026-03-03 19:55:38 +03:00

Owner

Copy link

Originally created by @xsvlz on GitHub (Feb 26, 2024).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1949

Originally assigned to: @NghiaTranUIT on GitHub.

Description

In my work, I have the following usage requirement:

I need to map the access of mobile devices to the production environment URL to the offline environment URL, for example:

xx.yy.com(production) -> 10.2.2.2:8100(offline)

At the same time, I need to set a specific value for the Host field in the request Header to access my specific business environment, for example:

Host: scene_biz.xx.yy.com

When sending requests using Proxyman, even if I manually set the Host field in the request Header to scene_biz.xx.yy.com, the actual request will still be modified to match the URL, i.e., 10.2.2.2:8100. Regardless of whether I use map remote, script, or no tools at all, simply constructing a request and sending it to Proxyman, the Host field in the Header will be tampered with.

Steps to Reproduce

1. Construct a request using Proxyman, where the URL is in the format of ip:port and the Host in the request header is different from the URL.
2. Send the request.
3. Examine the request result, where the Host field in the request header has been tampered with to match the content of the requested URL.

Based on my testing, it seems that the above-mentioned abnormal behavior only occurs when the URL contains a port number.
e.g.
The Host header won't be tampered with:

curl -H "Host: xx.yy.com" http://10.2.2.2

The Host header will be tampered with and changed to "10.2.2.2:8100":

curl -H "Host: xx.yy.com" http://10.2.2.2:8100

Current Behavior

The "Host" field in the request header is forcibly tampered with to match the content of the requested URL.

Expected Behavior

The Host field in the request header should not be tampered.

Environment

• App version: e.g Proxyman 5.0.0
• macOS version: e.g macOS Sonoma 14.2.1 (23C71)

Originally created by @xsvlz on GitHub (Feb 26, 2024). Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/1949 Originally assigned to: @NghiaTranUIT on GitHub. ## Description <!--- Description for the bug? --> In my work, I have the following usage requirement: I need to map the access of mobile devices to the production environment URL to the offline environment URL, for example: `xx.yy.com(production) -> 10.2.2.2:8100(offline)` At the same time, I need to set a specific value for the Host field in the request Header to access my specific business environment, for example: `Host: scene_biz.xx.yy.com` When sending requests using Proxyman, even if I manually set the Host field in the request Header to `scene_biz.xx.yy.com`, the actual request will still be modified to match the URL, i.e., `10.2.2.2:8100`. Regardless of whether I use map remote, script, or no tools at all, simply constructing a request and sending it to Proxyman, the Host field in the Header will be tampered with. ## Steps to Reproduce <!-- Add relevant code and/or a live example --> 1. Construct a request using Proxyman, where the URL is in the format of **ip:port** and the Host in the request header is different from the URL. 2. Send the request. 3. Examine the request result, where the Host field in the request header has been tampered with to match the content of the requested URL. Based on my testing, it seems that the above-mentioned abnormal behavior only occurs when the URL contains a port number. e.g. The `Host` header won't be tampered with: ``` curl -H "Host: xx.yy.com" http://10.2.2.2 ``` The `Host` header will be tampered with and changed to "10.2.2.2:8100": ``` curl -H "Host: xx.yy.com" http://10.2.2.2:8100 ``` ## Current Behavior <!--- What went wrong? --> The "Host" field in the request header is forcibly tampered with to match the content of the requested URL. ## Expected Behavior <!--- What should have happened? --> The Host field in the request header should not be tampered. ## Environment - App version: e.g Proxyman 5.0.0 - macOS version: e.g macOS Sonoma 14.2.1 (23C71)

kerem added the

bug

label 2026-03-03 19:55:38 +03:00

kerem commented 2026-03-03 19:55:39 +03:00

Author

Owner

Copy link

@xsvlz commented on GitHub (Feb 26, 2024):

To provide a more visual representation, I have captured screenshots of the two examples I mentioned earlier. After importing these two requests using curl, there are different outcomes.

• Normal Case：
  

• Exceptional Case：
  

<!-- gh-comment-id:1963998109 --> @xsvlz commented on GitHub (Feb 26, 2024): To provide a more visual representation, I have captured screenshots of the two examples I mentioned earlier. After importing these two requests using curl, there are different outcomes. - Normal Case：  - Exceptional Case： 

kerem commented 2026-03-03 19:55:39 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Mar 1, 2024):

I need to map the access of mobile devices to the production environment URL to the offline environment URL, for example:

xx.yy.com(production) -> 10.2.2.2:8100(offline)

Can you use the Map Remote with the option: Preserve the Host Header?

Map Remote is useful if you want to map between the Localhost <-> Production.

---

For other tools, Proxyman automatically construct the Host header again with a given URL.

<!-- gh-comment-id:1972439856 --> @NghiaTranUIT commented on GitHub (Mar 1, 2024): > I need to map the access of mobile devices to the production environment URL to the offline environment URL, for example: > xx.yy.com(production) -> 10.2.2.2:8100(offline) Can you use the Map Remote with the option: `Preserve the Host Header`? Map Remote is useful if you want to map between the Localhost <-> Production.  ------------------- For other tools, Proxyman automatically construct the Host header again with a given URL.

kerem commented 2026-03-03 19:55:39 +03:00

Author

Owner

Copy link

@xsvlz commented on GitHub (Mar 1, 2024):

Can you use the Map Remote with the option: Preserve the Host Header?

Map Remote is useful if you want to map between the Localhost <-> Production.

My use case is quite complex, as I need to forward requests from address A to address B while modifying the Host header to address C. In Charles, I would use two features: "Map Remote" and "Rewrite". However, I couldn't find the "Rewrite" feature in Proxyman, so I resorted to using "Scripting" to manually modify the request address and headers.

Please note that for regular URL requests (e.g., http://example.com), I can successfully modify the Host header using the aforementioned operations. However, for URL requests in the format of "ip:port" (e.g., http://10.123.123.123:8080), regardless of the tool I use to modify the headers, the Host header is always changed to 10.123.123.123:8080 when sending the request.

This is also why I believe there is a bug.

<!-- gh-comment-id:1972464320 --> @xsvlz commented on GitHub (Mar 1, 2024): > Can you use the Map Remote with the option: `Preserve the Host Header`? > > Map Remote is useful if you want to map between the Localhost <-> Production. My use case is quite complex, as I need to forward requests from address A to address B while modifying the Host header to address C. In Charles, I would use two features: "Map Remote" and "Rewrite". However, I couldn't find the "Rewrite" feature in Proxyman, so I resorted to using "Scripting" to manually modify the request address and headers. Please note that for regular URL requests (e.g., `http://example.com`), I can successfully modify the Host header using the aforementioned operations. However, for URL requests in the format of "ip:port" (e.g., `http://10.123.123.123:8080`), regardless of the tool I use to modify the headers, the Host header is always changed to `10.123.123.123:8080` when sending the request. This is also why I believe there is a bug.

kerem commented 2026-03-03 19:55:39 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Mar 4, 2024):

@xsvlz By default, the Scripting will automatically override the Host with the new URL.

You can use this one to preserve the Host Header in the Script:

async function onRequest(context, url, request) {

  request.headers["Host"] = "data.httpbin.org"
  request.preserveHostHeader = true
  
  // Done
  return request;
}

It's already supported on v5.0.0.

---

Linked ticket: https://github.com/ProxymanApp/Proxyman/issues/769#issuecomment-770147548

<!-- gh-comment-id:1976538790 --> @NghiaTranUIT commented on GitHub (Mar 4, 2024): @xsvlz By default, the Scripting will automatically override the Host with the new URL. You can use this one to preserve the Host Header in the Script: ```js async function onRequest(context, url, request) { request.headers["Host"] = "data.httpbin.org" request.preserveHostHeader = true // Done return request; } ``` It's already supported on v5.0.0. ---------- Linked ticket: https://github.com/ProxymanApp/Proxyman/issues/769#issuecomment-770147548

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

6.9.0

6.8.0

6.7.0

6.6.0

6.5.0

6.4.0

6.3.0

6.2.0

6.1.0

6.0.2

6.0.0

6.0.1

5.25.0

5.24.0

5.23.0

5.23.1

5.22.0

5.20.0

5.21.0

5.19.0

5.18.0

5.17.0

5.16.0

5.15.0

5.14.0

5.12.2

5.12.1

5.12.0

5.11.0

5.10.0

5.8.0

5.9.0

5.7.0

5.6.1

5.6.0

5.5.0

5.4.0

5.2.0

5.3.0

5.1.1

5.0.0

4.16.0

4.15.0

4.14.0

4.13.0

4.12.0

4.11.0

4.10.0

4.9.1

4.9.0

4.8.2

4.8.1

4.8.0

4.7.1

4.7.0

4.6.1

4.6.0

4.5.0

4.4.0

4.3.1

4.3.0

4.2.1

4.2.0

4.1.0

4.0.0

3.15.0

3.14.0

3.13.0

3.12.0

3.11.0

3.10.0

3.9.0

3.8.0

3.7.0

3.6.2

3.6.1

3.6.0

3.5.2

3.5.1

3.5.0

3.4.0

3.3.0

3.2.0

3.1.0

3.0.0

2.35.4

2.35.3

2.35.2

2.35.1

2.35.0

2.34.1

2.34.0

2.33.0

2.32.1

2.32.0

2.31.0

2.30.0

2.29.0

2.28.0

2.27.0

2.26.0

2.25.0

2.24.0

2.23.0

2.22.0

2.21.1

2.21.0

2.20.0

2.19.0

2.18.0

2.17.0

2.16.1

2.16.0

2.15.2

2.15.1

2.15.0

2.14.2

2.14.1

2.14.0

2.13.0

2.12.0

2.11.1

2.11.0

2.10.0

2.9.1

2.9.0

2.8.0

2.7.0

2.6.0

2.5.3

2.5.2

2.5.1

2.5.0

2.4.2

2.4.1

2.4.0

2.3.0

2.2.0

2.1.1

2.1.0

2.0.1

2.0.0

1.24.0

1.23.0

1.22.0

1.21.0

1.20.0

1.19.0

1.18.1

1.18.0

1.17.1

1.17.0

1.16.0

1.15.0

1.14.1

1.14.0

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.7

1.4.6

1.4.5.1

1.4.5

1.4.4.1

1.4.4

1.4.3

1.4.2

1.4.1.1

1.4.1

1.4

1.3.9

1.3.8

1.3.7

1.3.6

1.3.5

1.3.4.3

1.3.4.2

1.3.4.1

1.3.4

1.3.3

1.3.2

1.3.1

1.3

1.2

1.1.2

1.1.1

1.1

1.0.3

1.0.2

1.0

0.8.1

0.8

0.7

0.6

0.5.1

0.5

v0.4.1

Labels

Clear labels   

Discussion

  

Feature request

  

In Progress...

  

Plugins

  

Waiting response

  

Windows

  

Windows

  

bug

  

duplicate

  

enhancement

  

feature

  

good first issue

  

iOS

  

macOS 10.11

  

question

  

wontfix

  

✅ Done

No labels

Discussion

Feature request

In Progress...

Plugins

Waiting response

Windows

Windows

bug

duplicate

enhancement

feature

good first issue

iOS

macOS 10.11

question

wontfix

✅ Done

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/Proxyman#1941

No description provided.