Bleeping Computer

PyPI removes 'mitmproxy2' over code execution concerns

The PyPI repository has removed a Python package called 'mitmproxy2' that was an identical copy of the official "mitmproxy" library, but with an "artificially introduced" code execution vulnerability.
GitHub

Incompatible with python-cryptography 35.0.0: Valid PEM but no BEGIN CERTIFICATE/END CERTIFICATE delimiters. Are you sure this is a certificate?

Starting mitmproxy with python-cryptography 35.0.0 installed causes a traceback to be logged into the event log. error: Addon error: Traceback (most recent call last ...
GitHub

mitmproxy has crashed bug

A clear and concise description of what the bug is. File "C:\Users\mrha1\AppData\Roaming\Python\Python312\site-packages\mitmproxy\proxy\layers\quic_stream_layers.py", line 91, in _handle_event yield ...
CSOonline

Inspecting TLS-encrypted traffic with mitmproxy

Mitmproxy is a free, open-source tool whose killer feature is the ability to inspect Transport Layer Security (TLS)-encrypted mobile phone app traffic. The tool is superior to Wireshark when it comes ...