Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
HoneyProxy is a lightweight tool for real-time inspection and analysis of HTTP(S) traffic, with a clear focus on malware analysis and network forensics. Its proxy and SSL interception capabilities are based on mitmproxy. It runs on Windows, OSX, and Linux, with the source repository hosted on GitHub and issue reporting primarily handled through the GitHub issue tracker.
In terms of protection category, HoneyProxy is better understood as a forensics and analysis tool rather than a full enterprise firewall, EDR, or security gateway. It supports real-time analysis of HTTP(S) traffic, regex-based filtering and highlighting, saving HTTP conversations for later analysis, and generating reports for saved flows. The reporting feature also includes a live JS editor. Deployment is as a local Python tool and requires dependencies such as pyOpenSSL, pyasn1, Twisted, and Autobahn. Windows users may need to manually install binary packages or compile them themselves, while Ubuntu/Debian users can install twisted via the package manager.
Its management capabilities are mainly focused on local interactive analysis: filtering, highlighting, saving, report generation, and scripted modification. It supports modifying traffic with Python, such as removing Cache Header, which is valuable for reproducing malware sample communications, protocol debugging, and forensic work. On the integration side, the documentation clearly states that it is based on and compatible with mitmproxy, making it suitable for researchers who already have experience with mitmproxy. However, there is no evidence of centralized management, access control, audit logs, SIEM integration, or alert notification capabilities.
The text does not provide any commercial pricing, subscription model, or enterprise edition information. It only states that the code can be obtained from the latest release, development snapshot, or GitHub. There is also no information about compliance certifications such as SOC 2, ISO 27001, or GDPR, so it should not be treated as a commercial security platform with established enterprise compliance backing.
Its strengths are that it is lightweight, cross-platform, and supports SSL interception, regex filtering, session saving, report generation, and Python scripting. It is well suited to security research, malware analysis, network forensics, and HTTP(S) investigations in test environments. Its drawbacks are the relatively high dependency installation barrier, limited information on enterprise-grade management and support, and the fact that the project originated from Honeynet Google Summer of Code 2012, with its current maintenance status unclear from the text.
The text does not state how stable access to honeyproxy.org, the GitHub repository, or dependency sources is from mainland China, so this should be considered unknown. In practice, usage may also be affected by connectivity to Python package sources and GitHub. Alternatives to consider include mitmproxy, Burp Suite, Fiddler, OWASP ZAP, and Charles Proxy.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on honeyproxy.org official site.
honeyproxy.org is an Unknown Security provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach honeyproxy.org directly.