High-risk tools in Proxy
30 of the 89 tools in Proxy are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
interceptor_browser_evaluateExecuteExecute a JS file in the page and return its result.
-
interceptor_browser_launchExecuteLaunch cloakbrowser (stealth Chromium) with proxy flags and SPKI certificate trust. Built-in source-level fingerprint patches + humanize mode. Driven via Playwright — locator-ba...
-
interceptor_browser_navigateExecuteNavigate the browser target
-
interceptor_camoufox_launchExecuteLaunch camoufox (anti-detect Firefox) as a Playwright WebSocket server, proxied through proxy-mcp with NSS CA trust. Returns a camoufox target_id, wsUrl, and safe fingerprint in...
-
proxy_session_startExecuteStart persistent on-disk capture for the current proxy run.
-
proxy_startExecuteStart the HTTPS MITM proxy. Auto-generates a CA certificate. Returns port, URL, cert fingerprint, and setup instructions for the target device.
-
proxy_start_transparentExecuteStart the transparent proxy listener. Receives iptables-redirected traffic (no CONNECT tunnels). Shares the same CA cert, rules, and traffic buffer as the explicit proxy. The ex...
-
proxy_stopExecuteStop the MITM proxy. Traffic history and CA certificate are retained.
-
proxy_stop_transparentExecuteStop the transparent proxy listener.
-
humanizer_idleExecuteSimulate idle behavior with mouse micro-jitter and occasional micro-scrolls.
-
interceptor_browser_inject_init_scriptExecuteInject a JS file as an init script (Playwright
-
interceptor_frida_detachExecuteDetach Frida session from an Android app, removing injected scripts.
-
interceptor_spawnExecuteSpawn a command with proxy env vars pre-configured (HTTP_PROXY, HTTPS_PROXY, SSL_CERT_FILE, NODE_EXTRA_CA_CERTS, CURL_CA_BUNDLE, and 15+ more). Traffic automatically routes thro...
-
proxy_replay_sessionExecuteReplay selected requests from a recorded/imported session. Default mode is dry_run for safety.
-
proxy_rewrite_urlExecuteRewrite request URLs matching a pattern. Creates a passthrough rule with body match-replace on the URL.
-
humanizer_clickExecuteClick an element. Pass one of: selector (CSS/XPath), role + optional name,
-
humanizer_moveExecuteMove mouse to target coordinates via the backend Playwright page.
-
humanizer_scrollExecuteDispatch a wheel event. Raw page.mouse.wheel — single event, not multi-step.
-
humanizer_typeExecuteType text into the focused element via page.keyboard.type.
-
interceptor_android_activateExecuteFull Android interception: inject CA cert into system store (root required), set up ADB reverse tunnel, and optionally set Wi-Fi proxy. Proxy must be running.
-
interceptor_android_setupExecuteQuick setup: push CA cert + ADB reverse tunnel only (no Wi-Fi proxy). Equivalent to interceptor_android_activate with set_wifi_proxy=false.
-
interceptor_browser_add_script_tagExecuteAppend a <script> element to the current page (Playwright
-
interceptor_docker_attachExecuteInject proxy env vars and CA certificate into a Docker container. Two modes:
-
interceptor_frida_attachExecuteAttach to an Android app via Frida and inject SSL unpinning + proxy redirect scripts. Bypasses certificate pinning, OkHttp CertificatePinner, TrustManager, and native TLS verifi...
-
proxy_add_ruleExecuteAdd an interception rule with a matcher and handler. Rules are evaluated by priority (ascending), first match wins.
-
proxy_enable_server_tls_captureExecuteToggle server-side JA3S capture. When enabled, outgoing TLS connections are intercepted to extract the server
-
proxy_inject_headersExecuteAdd or overwrite headers on matching traffic. Creates a passthrough rule with header transforms.
-
proxy_mobile_setupExecuteOne-command mobile capture: start explicit + transparent listeners, optionally inject the CA on an Android device, and emit a sudo-runnable script that wires iptables/sysctl/nmc...
-
proxy_set_fingerprint_spoofExecuteEnable outgoing TLS + HTTP/2 fingerprint spoofing via impit (native TLS impersonation, no Docker required). Supports browser presets that select an impit target (rustls, matchin...
-
proxy_set_ja3_spoofExecuteLegacy: enable fingerprint spoofing (deprecated, use proxy_set_fingerprint_spoof with a preset). The ja3 parameter is accepted but ignored — the default Chrome preset is used.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.