Capture, inspect and analyze HTTP(S) traffic.

Hawktra combines proxy, intercept and advanced request/response analysis. Built for pentest, bug bounty and AppSec teams.

Windows · macOS · Linux Live Demo Sign in

Realtime: Intercept → Repeater → Diff → Notes → Export

[Proxy]  Intercept ON — 127.0.0.1:8080
[TLS]    Dynamic cert issued → api.example.com
[200]    GET /v1/session  214ms  3.1KB
[302]    POST /login       98ms  → /dashboard
[403]    GET /admin        47ms
[Diff]   /cart?qty=1 ↔ qty=999  (len:+124)
[Notes]  CSRF token predictable; session fixation suspected

Proxy & Intercept

Capture browser traffic, edit requests/responses. Fast filter, search and notes.

Repeater & Diff

Replay requests and see impact instantly. Compare responses line-by-line.

Dynamic TLS

Local CA with on-the-fly per-domain certificates. Simple setup, safe testing.

Scripting & Plugins

Extensible hooks and event-driven automation, integrate external tools.

Logs & Export

Export sessions as JSON/HAR/Markdown. Speed up reporting.

Performance

High concurrency, low latency. Smooth experience even with large sessions.

Download Hawktra

Packages for Windows, macOS and Linux

Windows (.exe) macOS (.dmg) Linux (.AppImage)

Get started in minutes

Point your browser to the local proxy on 127.0.0.1:8080 and go through Intercept → Repeater → Diff flow.

Quickstart API & Plugins