Let's say a binary is sending HTTP requests to a domain, example.com, and we want to inspect those requests. 1. Start Burp and add a bind listener to 127.0.0.1:8081 to redirect to example.com. 2. Modify */etc/hosts*: ```bash 127.0.0.1 example.com ``` Because we can't add a proxy in the above file, we need to create another redirect, for example with [[Socat]]: ``` sudo socat TCP-LISTEN:80,fork,reuseaddr TCP:127.0.0.1:8081 ``` The request then goes like this: ``` Binary (example.com) -> (/etc/hosts) -> 127.0.0.1 -> (socat) -> 127.0.0.1:8081 -> (Burp) -> example.com ``` *** ## Footnotes Resources - [IppSec - UHC - Spooktrol](https://www.youtube.com/watch?v=pc-_tK6CWnA&t=525s)