Chrome — Tamper Data

As of 2024–2025, Manifest V3 extensions have limited abilities to tamper with request bodies. Therefore, security professionals often use external proxy tools (like Burp Suite or OWASP ZAP) that route Chrome’s traffic. However, several pure Chrome extensions still exist for simpler tampering needs. Here are the most effective ways to intercept and modify Chrome traffic: 1. Chrome DevTools (Local Overrides & Request Blocking) While not a classic intercept-and-modify tool, DevTools allows you to alter JavaScript, CSS, and even fetch/XHR responses.

Set the URL filter – e.g., *://api.example.com/users/*

Open Requestly dashboard and create a new "Modify Request" rule. tamper data chrome

Install Requestly from the Chrome Web Store.

A: Yes, but your proxy tool must support HTTPS interception with a trusted certificate. HSTS does not prevent proxying – only downgrade attacks. As of 2024–2025, Manifest V3 extensions have limited

Save the rule and enable it.

Go to Proxy → Options. Ensure the proxy listener is active on 127.0.0.1:8080 . Here are the most effective ways to intercept

In Burp, turn on "Intercept" (Intercept is on). Now every request from Chrome will stop in Burp.