Created
April 26, 2026 15:59
-
-
Save networkextension/6ccf2bd9b8fa52afe427c4f958613385 to your computer and use it in GitHub Desktop.
Latch mitm first test
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| % curl -v -x http://127.0.0.1:4591 https://example.com | |
| * Trying 127.0.0.1:4591... | |
| * Connected to 127.0.0.1 (127.0.0.1) port 4591 | |
| * CONNECT tunnel: HTTP/1.1 negotiated | |
| * allocate connect buffer | |
| * Establish HTTP proxy tunnel to example.com:443 | |
| > CONNECT example.com:443 HTTP/1.1 | |
| > Host: example.com:443 | |
| > User-Agent: curl/8.7.1 | |
| > Proxy-Connection: Keep-Alive | |
| > | |
| < HTTP/1.1 200 Connection Established | |
| < Content-Length: 0 | |
| * Ignoring Content-Length in CONNECT 200 response | |
| < | |
| * CONNECT phase completed | |
| * CONNECT tunnel established, response 200 | |
| * ALPN: curl offers h2,http/1.1 | |
| * (304) (OUT), TLS handshake, Client hello (1): | |
| * CAfile: /etc/ssl/cert.pem | |
| * CApath: none | |
| * (304) (IN), TLS handshake, Server hello (2): | |
| * (304) (IN), TLS handshake, Unknown (8): | |
| * (304) (IN), TLS handshake, Certificate (11): | |
| * (304) (IN), TLS handshake, CERT verify (15): | |
| * (304) (IN), TLS handshake, Finished (20): | |
| * (304) (OUT), TLS handshake, Finished (20): | |
| * SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256 / [blank] / UNDEF | |
| * ALPN: server accepted h2 | |
| * Server certificate: | |
| * subject: CN=example.com; O=Latch; OU=Local MITM Leaf | |
| * start date: Apr 26 13:18:43 2026 GMT | |
| * expire date: Apr 26 13:18:43 2027 GMT | |
| * subjectAltName: host "example.com" matched cert's "example.com" | |
| * issuer: CN=Latch Local CA; O=Latch; OU=Local MITM | |
| * SSL certificate verify ok. | |
| * using HTTP/2 | |
| * [HTTP/2] [1] OPENED stream for https://example.com/ | |
| * [HTTP/2] [1] [:method: GET] | |
| * [HTTP/2] [1] [:scheme: https] | |
| * [HTTP/2] [1] [:authority: example.com] | |
| * [HTTP/2] [1] [:path: /] | |
| * [HTTP/2] [1] [user-agent: curl/8.7.1] | |
| * [HTTP/2] [1] [accept: */*] | |
| > GET / HTTP/2 | |
| > Host: example.com | |
| > User-Agent: curl/8.7.1 | |
| > Accept: */* | |
| > | |
| * Request completely sent off | |
| < HTTP/2 200 | |
| < date: Sun, 26 Apr 2026 15:56:42 GMT | |
| < content-type: text/html | |
| < server: cloudflare | |
| < last-modified: Sat, 25 Apr 2026 11:01:06 GMT | |
| < allow: GET, HEAD | |
| < accept-ranges: bytes | |
| < age: 12668 | |
| < cf-cache-status: HIT | |
| < cf-ray: 9f26c76dacfa8876-NRT | |
| < | |
| <!doctype html><html lang="en"><head><title>Example Domain</title><meta name="viewport" content="width=device-width, initial-scale=1"><style>body{background:#eee;width:60vw;margin:15vh auto;font-family:system-ui,sans-serif}h1{font-size:1.5em}div{opacity:0.8}a:link,a:visited{color:#348}</style></head><body><div><h1>Example Domain</h1><p>This domain is for use in documentation examples without needing permission. Avoid use in operations.</p><p><a href="https://iana.org/domains/example">Learn more</a></p></div></body></html> | |
| * Connection #0 to host 127.0.0.1 left intact | |
| apple@apples-MacBook-Pro iOS % curl -v https://example.com | |
| * Host example.com:443 was resolved. | |
| * IPv6: (none) | |
| * IPv4: 104.20.23.154, 172.66.147.243 | |
| * Trying 104.20.23.154:443... | |
| * Connected to example.com (104.20.23.154) port 443 | |
| * ALPN: curl offers h2,http/1.1 | |
| * (304) (OUT), TLS handshake, Client hello (1): | |
| * CAfile: /etc/ssl/cert.pem | |
| * CApath: none | |
| * (304) (IN), TLS handshake, Server hello (2): | |
| * (304) (IN), TLS handshake, Unknown (8): | |
| * (304) (IN), TLS handshake, Certificate (11): | |
| * (304) (IN), TLS handshake, CERT verify (15): | |
| * (304) (IN), TLS handshake, Finished (20): | |
| * (304) (OUT), TLS handshake, Finished (20): | |
| * SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256 / [blank] / UNDEF | |
| * ALPN: server accepted h2 | |
| * Server certificate: | |
| * subject: CN=example.com | |
| * start date: Apr 2 21:18:57 2026 GMT | |
| * expire date: Jul 1 21:24:46 2026 GMT | |
| * subjectAltName: host "example.com" matched cert's "example.com" | |
| * issuer: C=US; O=CLOUDFLARE, INC.; CN=Cloudflare TLS Issuing ECC CA 1 | |
| * SSL certificate verify ok. | |
| * using HTTP/2 | |
| * [HTTP/2] [1] OPENED stream for https://example.com/ | |
| * [HTTP/2] [1] [:method: GET] | |
| * [HTTP/2] [1] [:scheme: https] | |
| * [HTTP/2] [1] [:authority: example.com] | |
| * [HTTP/2] [1] [:path: /] | |
| * [HTTP/2] [1] [user-agent: curl/8.7.1] | |
| * [HTTP/2] [1] [accept: */*] | |
| > GET / HTTP/2 | |
| > Host: example.com | |
| > User-Agent: curl/8.7.1 | |
| > Accept: */* | |
| > | |
| * Request completely sent off | |
| < HTTP/2 200 | |
| < date: Sun, 26 Apr 2026 15:58:22 GMT | |
| < content-type: text/html | |
| < server: cloudflare | |
| < last-modified: Sat, 18 Apr 2026 00:51:00 GMT | |
| < allow: GET, HEAD | |
| < accept-ranges: bytes | |
| < age: 8770 | |
| < cf-cache-status: HIT | |
| < cf-ray: 9f26c9ded9d25c62-FRA | |
| < | |
| <!doctype html><html lang="en"><head><title>Example Domain</title><meta name="viewport" content="width=device-width, initial-scale=1"><style>body{background:#eee;width:60vw;margin:15vh auto;font-family:system-ui,sans-serif}h1{font-size:1.5em}div{opacity:0.8}a:link,a:visited{color:#348}</style></head><body><div><h1>Example Domain</h1><p>This domain is for use in documentation examples without needing permission. Avoid use in operations.</p><p><a href="https://iana.org/domains/example">Learn more</a></p></div></body></html> | |
| * Connection #0 to host example.com left intact |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment