Settings

Appearance

Theme

Select your preferred color scheme

Notifications

Desktop Notifications

Get notified when new requests are pending

Notification tool not found

A companion app is handling notifications. System notifications are suppressed while the companion is connected.

Running in basic mode

Your version of notify-send does not support click actions or auto-dismiss. Notifications will still appear, but you will need to use the dashboard to act on them. Upgrade libnotify to 0.8+ for full functionality.

Maintenance

Redact stored headers

Apply header redaction to all previously stored HTTP transactions. Replaces sensitive values (Authorization, Cookie, API keys, tokens) with [REDACTED].

TLS interception (sometimes called MITM, or man-in-the-middle) allows GreyProxy to decrypt HTTPS traffic so it can inspect, log, and apply credential substitution to encrypted requests. Without it, GreyProxy can only see the destination hostname, not the full request contents. When enabled, GreyProxy generates a local CA certificate that your system must trust.

TLS Interception

HTTPS Decoding

Intercept and decode HTTPS traffic for visibility

This only applies to new connections. Already established connections will not be affected until they reconnect.

Loading certificate status...

CA certificate not generated

HTTPS traffic cannot be decoded without a CA certificate. Generate one to enable TLS interception.

Install in system trust store

Run this in your terminal to trust the CA certificate system-wide (requires sudo):

Download CA Certificate

Credential substitution replaces real API keys with opaque placeholders in sandboxed environments. Real credentials are injected transparently at the proxy layer, so your secrets never reach the sandboxed process.

Global Credentials

Store API keys here, then request them by label when launching a sandbox. Credentials are only injected when explicitly requested; they are never sent to processes automatically. Read more

Usage

greywall --inject ANTHROPIC_API_KEY -- your-command

Use --inject multiple times to inject several credentials. Greywall sets the placeholder as an environment variable and rewrites .env / .env.local files so the real value never reaches the sandbox, regardless of where the application reads it from. (Note: .env rewriting is currently Linux only.)

Once active, the proxy replaces every occurrence of the placeholder in HTTP headers and query parameters with the real credential value before forwarding upstream.

Active Sessions

Conversation Tracking

Enable conversation tracking

Automatically reconstruct LLM conversations from intercepted API traffic

Rebuild conversations

Reprocess all HTTP transactions through the conversation assembler. Useful after adding endpoint rules or upgrading.

Endpoint rules tell GreyProxy how to parse LLM API traffic. Built-in rules cover major providers (Anthropic, OpenAI, Google). Add custom rules for self-hosted endpoints like LiteLLM, Ollama, or any OpenAI-compatible API. After adding a rule, click Rebuild above to reprocess existing traffic.

Add Endpoint Rule

Both host and path support * as a wildcard. For example: *.example.com or /v1/*/completions

Host pattern

Path pattern

Decoder

Method

Endpoint Rules

Middlewares inspect, block, or rewrite HTTP traffic. Configure them with --middleware-cmd, --middleware, or the middlewares: block in greyproxy.yml. Restart greyproxy to change the list.