InterceptSuite

TCP/UDP/DTLS/TLS Traffic Interception & Analysis

MITM proxy for IoT devices, thick clients, and real-time applications

InterceptSuite is a cross-platform network traffic interception tool for TCP, UDP, DTLS, and TLS protocols. Operating at the transport layer, it provides comprehensive visibility into encrypted traffic from IoT devices, thick clients, databases, gaming applications, and custom protocols.

• Any Protocol - Intercepts traffic from any TCP/UDP/TLS/DTLS application
• IoT & Embedded Devices - Perfect for analyzing IoT device TCP/UDP communications
• Custom Protocols - Works with thick clients, games, and proprietary protocols
• Python Extensions - Add custom protocol dissection capabilities
• Cross-Platform - Native support for Windows, Linux, and macOS

• Overview
• Features
• Getting Started
• Usage
• Upgrade to Professional
• When to Use InterceptSuite
• Screenshots
• Python Extensions
• Contributing
• License

• Windows 10/11 (64-bit), Linux (x64), or macOS 13+ (Apple Silicon)

1. Download the installer from the Releases page
   • Windows: .exe installer
   • Linux: .deb or .rpm package
   • macOS: .pkg installer
2. Run the installer and follow the setup wizard
3. Launch InterceptSuite from your applications menu

For installation guides, configuration tutorials, and detailed usage instructions:

• 📚 Documentation - Complete setup and usage guides
• 🎥 YouTube Channel - Video tutorials and demonstrations

Unlock advanced features for professional security testing and IoT analysis:

• ✅ DTLS Support - Decrypt IoT and real-time communication protocols
• ✅ Universal TLS Upgrade Detection - Automatic STARTTLS for any TCP protocol (SMTP, IMAP, PostgreSQL, MySQL, etc.)
• ✅ PCAP Export - Export captured traffic for Wireshark analysis
• ✅ Project File Management - Save and organize your capture sessions
• ✅ Multi-System License - Use on up to 3 systems simultaneously

• Monthly: $35/month
• Yearly: $300/year (Save $120 - 29% off)

While InterceptSuite can handle HTTP/HTTPS traffic, use HTTP-focused tools like Burp Suite, ZAP, Fiddler, Caido, or HTTP Toolkit for web application testing. These tools provide specialized features optimized for HTTP protocols.

• IoT Devices - MQTT, CoAP, custom IoT protocols over TCP/UDP/DTLS
• Thick Client Applications - Desktop apps with custom protocols
• Database Connections - PostgreSQL, MySQL, MSSQL over TLS
• Real-time Applications - Gaming protocols, VoIP, video streaming
• Custom Protocols - Proprietary TLS/DTLS encrypted protocols
• Embedded Systems - Low-level TCP/UDP traffic analysis

• Web applications and REST APIs
• Mobile app HTTP/HTTPS traffic
• HTTP-specific features (scanner, repeater, intruder)
• Web security assessments

View and modify network packets in real-time

View all traffic that has passed through the proxy

Configure proxy server, logging, and certificate management

Monitor active connections and session details

InterceptSuite provides a Python Extension API for custom protocol dissection. Write your own dissectors for any protocol you encounter.

• Flexible - Write dissectors for any protocol
• Customizable - Tailor parsing to your specific needs
• Lightweight - Load only the dissectors you need
• Extensible - Add new protocols without waiting for updates

• Raw decrypted traffic viewing
• Connection-level information
• Timestamp analysis

For documentation and examples, visit doc.interceptsuite.com

Contributions are welcome! Please:

• Report bugs via GitHub Issues
• Submit feature requests
• Check contribution guidelines before submitting PRs
• Help improve documentation and examples

This project is licensed under the GNU Affero General Public License v3.0 (AGPL-3.0)

• OpenSSL - TLS/SSL functionality
• Avalonia .NET - Cross-platform GUI
• CMake - Build system