App Trust Proxy

Authorized application traffic inspection for local labs. App Trust Proxy Core is a free open source proxy runtime for capturing, replaying, mocking, and modifying traffic while you test apps and devices you control.

App Trust Proxy is also the name of the desktop app for Mac that is still under development.

CoreFree and open source

Run the local proxy, web console, capture store, rules, scripts, and profile system.

DesktopMac app in development

A native app is planned for the same trusted traffic workflows with a desktop-first experience.

ScopeAuthorized testing only

Use it with apps, devices, networks, and systems that you own or have explicit permission to test.

App Trust Proxy Core

The open source proxy runtime

Core is the portable project you can run in a local lab. It provides HTTP and HTTPS proxying, SOCKS5, DNS override support, generated local certificates, domain allowlists, raw traffic capture, mocking, scripts, and reusable profiles.

It is designed for development, QA, security research with permission, and repeatable app traffic experiments where every change should be visible and portable.

Capture and inspect

View request and response headers, bodies, decoded payloads, raw bytes, and modification history for allowlisted domains.

Mock and modify

Return raw HTTP answers, adjust requests, rewrite responses, and preserve a visible audit of changes.

Export profiles

Package domains, rules, scripts, prompts, capture settings, and setup notes so another tester can reproduce the same proxy behavior.

App Trust Proxy for Mac

Under development

Desktop app

A native Mac experience is planned

The desktop app will focus on a polished local workflow for the same trusted proxy use case. Core remains the open source foundation, while the Mac app is being developed as the branded desktop product.

The naming is intentional. App Trust Proxy Core is the community project. App Trust Proxy is the desktop app and product family.

Read about the project editions

Workflow

Built for repeatable traffic tests

App Trust Proxy Core helps you define the traffic you want to see, decide how it should change, and export that setup for another local environment.

1Test client

Configure proxy, SOCKS, or DNS for the app or device under test.

2Core runtime

Apply allowlists, certificates, scripts, mocks, profiles, and interaction prompts.

3Upstream service

Forward passthrough traffic or replace matching traffic with configured answers.

Safety

Local lab use only

Keep the web UI, generated root CA, private keys, capture store, proxy listeners, DNS listener, and exported profiles private. Do not expose them to the public internet.