MacDPI

This application contains a Deep Packet Inspection (DPI) tool designed specifically for macOS. The tool analyzes network traffic and inspects data packets to provide insights into the flow of information across the network. It is useful for network administrators, security professionals, or anyone looking to monitor and inspect network traffic in detail.

Default settings remove most obstacles, if there is a site or service that you cannot access, you can access it by trying the settings in the DNS or Advanced section.

🇬🇧 For English

🇹🇷 Türkçe İçin

🇩🇪 Für Deutsch

🇪🇸 Para Español

🇫🇷 Pour le Français

🇮🇹 Per Italiano

🇧🇷 Para Português

🇷🇺 Для Русского

🇯🇵 日本語はこちら

🇰🇷 한국어 보기

🇨🇳 查看中文

🇸🇦 للغة العربية

🇵🇱 Dla Polskiego

🇺🇦 Для української

🇮🇷 برای فارسی

🇬🇷 Για Ελληνικά

🇦🇿 Azərbaycan dili üçün

📁 Releases

You can access the .dmg file by clicking here

❔ How it works

HTTP

Since most websites in the world now support HTTPS, MacDPI doesn't bypass Deep Packet Inspections for HTTP requests, However, it still serves proxy connection for all HTTP requests.

HTTPS

Although TLS encrypts every handshake process, the domain names are still shown as plaintext in the Client hello packet. In other words, when someone else looks on the packet, they can easily guess where the packet is headed to. The domain name can offer significant information while DPI is being processed, and we can actually see that the connection is blocked right after sending Client hello packet. I had tried some ways to bypass this and found out that it seemed like only the first chunk gets inspected when we send the Client hello packet split into chunks. What MacDPI does to bypass this is to send the first 1 byte of a request to the server, and then send the rest.

✨ Inspirations

SpoofDPI by @xvzc

MacDPI is an application for the MacOS operating system developed using SpoofDPI.