Skip to content
WePROXA
Blog

Inspect Requests

WePROXA captures all HTTP and HTTPS traffic flowing through the proxy and displays it in a clean, real-time request list.

Request List

Section titled “Request List”

The main view shows all captured requests in a sortable table with columns for:

  • ID — Numeric request identifier
  • Method — GET, POST, PUT, DELETE, etc. (shows “BLOCKED” for blocked requests)
  • Code — HTTP status code with color coding (green for 2xx, blue for 3xx, orange for 4xx, red for 5xx)
  • SchemeHTTP, HTTPS, WS, or WSS (secure traffic shown in green)
  • Tools — Indicates which user-facing tools modified the request or response (e.g., Breakpoint, Map Local)
  • Host — The server hostname
  • URL — The full request URL
  • Path — The URL path
  • Query — The URL query string
  • Remote Address — Resolved IP address and port of the server
  • HTTP Version — Negotiated protocol (HTTP/1.1, HTTP/2.0, etc.)
  • Client — The application or browser that made the request
  • Request Size — Request body size
  • Response Size — Response body size, or tunnel byte totals after an upgraded connection closes
  • Time — Timestamp of the request (HH:MM:SS)
  • Duration — Time from request to response

Columns are sortable (click headers), draggable (reorder by dragging), resizable, and can be shown or hidden via the column visibility picker.

Keyboard Navigation

Section titled “Keyboard Navigation”
  • Arrow Up / Arrow Down — Navigate between requests
  • Enter — Expand the details panel if collapsed

Content Type Filters

Section titled “Content Type Filters”

Quick-filter buttons above the list let you narrow results by content type: All, HTML, CSS, JS, JSON, Media, Font, XML, WASM, or Other.

Search Filters

Section titled “Search Filters”

A search bar lets you filter requests across three scopes:

  • URL — Match against the full URL (host and path)
  • Request — Search the HTTP method, URL, client/app name, and request body
  • Response — Search the status code, content type, and response body

Body-heavy searches run on the backend with a short debounce; everything else filters instantly.

When you’re viewing Saved Requests, request and response body search is unavailable. That view filters saved snapshots by metadata only.

Context Menu

Section titled “Context Menu”

Right-click any request to access quick actions:

  • Copy as cURL — Copy the request as a curl command
  • Enable / Disable SSL for {host} — Toggle HTTPS interception for the request’s host
  • Repeat Now — Re-execute the same request immediately
  • Repeat with Edit… — Open the repeat editor to modify the request before sending
  • Add to Diff — Select requests to compare side by side
  • Map Local — Create a Map Local rule pre-filled with the request’s URL
  • Add Breakpoint — Create a breakpoint rule for the request’s URL pattern
  • Add Block Rule — Block requests matching this URL
  • Add Throttle Rule — Add a network conditioning rule for this URL

The context menu only shows actions that apply to the selected request. Internal lifecycle markers, such as upgraded tunnel handling, are kept out of tool labels so the list focuses on rules you configured.

Request Details

Section titled “Request Details”

Click on any request to open the details panel with full information:

Request details panel

The details panel can be positioned as a right sidebar or a bottom panel, and can be collapsed when not needed.

Detail Actions

Section titled “Detail Actions”

The header above the details tabs includes contextual actions:

  • Save — store the currently selected live HTTPS request as a persistent snapshot for later inspection
  • Delete — remove a saved snapshot when you’re viewing an item from Saved Requests
  • Download — save the current response body to your macOS Downloads folder

Saved snapshots are available from the sidebar even after the original live request scrolls out of the session.

Request Section

Section titled “Request Section”
  • Headers — All request headers in a key-value table (count shown in the tab label)
  • Cookies — Request Cookie headers parsed into individual cookie names and values
  • Body — Request body with syntax highlighting (JSON, XML, HTML, etc.), or media preview for binary content
  • Raw — Full HTTP/1.1 request format (method, path, headers, and body)

Large request bodies load on demand so selecting a request stays responsive even when the payload is big. Body buffering is bounded so unusually large uploads cannot force WePROXA to keep unlimited data in memory.

When a request carries multiple Cookie headers, the Headers tab keeps them tidy as one combined entry while the Cookies tab breaks them into individual pairs. This is especially useful for HTTP/2 browser traffic, where clients may split cookies across multiple header fields.

If a tool modified the request (e.g., Breakpoint, Block List), a “Modified By” indicator is shown.

Response Section

Section titled “Response Section”
  • Headers — All response headers in a key-value table (count shown in the tab label)
  • Cookies — Response Set-Cookie headers grouped by cookie, including attributes such as Path, Domain, HttpOnly, Secure, and SameSite
  • Body — Response body with auto-formatting and syntax highlighting. JSON is pretty-printed. Images, video, and audio are previewed inline with file metadata (content type, size, dimensions)
  • Raw — Full HTTP/1.1 response format (status line, headers, and body)
  • Frames — WebSocket frames for successful 101 Switching Protocols responses, with sent/received filters, payload search, opcodes, sizes, and timestamps

For large text or media responses, WePROXA shows the response metadata first and lets you click Load body only when you actually need the full content. The response Download action is available from both the body and raw views.

When a WebSocket connection is captured, WePROXA displays the request as ws:// or wss:// and opens the Frames tab automatically. See WebSocket Inspection for details.

If a tool modified the response (e.g., Map Local, Breakpoint), a “Modified By” indicator is shown.

Source View

Section titled “Source View”

Toggle to the source/tree view in the sidebar to see requests organized into sections:

  • All — Every captured request
  • Saved Requests — Persistent HTTPS request snapshots you explicitly saved from the details panel
  • Pinned — Manually pinned hosts for quick access (pin/unpin via right-click)
  • SSL — Hosts with SSL interception enabled (toggle via right-click)
  • SSL Enabled Apps — Apps with SSL interception enabled, grouped as app → host → path
  • Apps — Requests grouped by the client application or browser
  • Devices — Requests from remote devices, grouped by IP address

Each section can be expanded into host and path hierarchies. Saved requests get their own host/path tree, and app-based SSL rules expand as app → host → path so you can isolate one client quickly. A search field at the top filters hosts and app names in real time.