mitmproxy

Install mitmproxy's Certificate Authority

Windows
🔏 Get mitmproxy-ca-cert.p12 📖 Show Instructions 📖 Hide Instructions
Manual Installation
1. Double-click the P12 file to start the import wizard.
2. Select a certificate store location. This determines who will trust the certificate – only the current Windows user or everyone on the machine. Click Next.
3. Click Next again.
4. Leave Password blank and click Next.
5. Select Place all certificates in the following store, then click Browse, and select Trusted Root Certification Authorities.
  Click OK and Next.
6. Click Finish.
7. Click Yes to confirm the warning dialog.
Automated Installation
1. Run certutil.exe -addstore root mitmproxy-ca-cert.cer (details).
Linux
🔏 Get mitmproxy-ca-cert.pem 📖 Show Instructions 📖 Hide Instructions
Ubuntu/Debian
1. mv mitmproxy-ca-cert.pem /usr/local/share/ca-certificates/mitmproxy.crt
2. sudo update-ca-certificates
Fedora
1. mv mitmproxy-ca-cert.pem /etc/pki/ca-trust/source/anchors/
2. sudo update-ca-trust
Arch Linux
macOS
🔏 Get mitmproxy-ca-cert.pem 📖 Show Instructions 📖 Hide Instructions
Manual Installation
1. Double-click the PEM file to open the Keychain Access application.
2. Locate the new certificate "mitmproxy" in the list and double-click it.
3. Change Secure Socket Layer (SSL) to Always Trust.
4. Close the dialog window and enter your password if prompted.
Automated Installation
1. sudo security add-trusted-cert -d -p ssl -p basic -k /Library/Keychains/System.keychain mitmproxy-ca-cert.pem
iOS – please read the instructions!
🔏 Get mitmproxy-ca-cert.pem 📖 Show Instructions 📖 Hide Instructions
iOS 13+
1. Use Safari to download the certificate. Other browsers may not open the proper installation prompt.
2. Install the new Profile (Settings -> General -> VPN & Device Management).
3. Important: Go to Settings -> General -> About -> Certificate Trust Settings. Toggle mitmproxy to ON.
Android
🔏 Get mitmproxy-ca-cert.cer 📖 Show Instructions 📖 Hide Instructions
Android 10+
1. Open the downloaded CER file.
2. Enter mitmproxy (or anything else) as the certificate name.
3. For credential use, select VPN and apps.
4. Click OK.
Some Android distributions require you to install the certificate via Settings -> Security -> Advanced -> Encryption and credentials -> Install a certificate -> CA certificate (or similar) instead.

Warning: Apps that target Android API Level 24 (introduced in 2016) and above only accept certificates from the system trust store (#2054). User-added CAs are not accepted unless the application manually opts in. Except for browsers, you need to patch most apps manually (Android network security config).

Alternatively, if you have rooted the device and have Magisk installed, you can install this Magisk module via the Magisk Manager app.
Firefox (does not use the OS root certificates)
🔏 Get mitmproxy-ca-cert.pem 📖 Show Instructions 📖 Hide Instructions
Firefox
1. Open Options -> Privacy & Security and click View Certificates... at the bottom of the page.
2. Click Import... and select the downloaded certificate.
3. Enable Trust this CA to identify websites and click OK.
Other Platforms
🔏 Get mitmproxy-ca-cert.pem 🔏 Get mitmproxy-ca-cert.p12

Other mitmproxy users cannot intercept your connection. This page is served by your local mitmproxy instance. The certificate you are about to install has been uniquely generated on mitmproxy's first run and is not shared between mitmproxy installations.

Install mitmproxy's Certificate Authority

Windows

Manual Installation

Automated Installation

Linux

Ubuntu/Debian

Fedora

Arch Linux

macOS

Manual Installation

Automated Installation

iOS – please read the instructions!

iOS 13+

Android

Android 10+

Firefox (does not use the OS root certificates)

Firefox

Other Platforms