Download Hugin

Available for macOS, Linux, and Windows.

macOS

Homebrew (recommended):

brew install xmaryo/tap/hugin

Supports Apple Silicon and Intel.

Linux

Homebrew:

brew install xmaryo/tap/hugin

Or download the binary:

curl -fsSL https://hugin.nu/install.sh | sh

x86_64 and aarch64. Requires WebKit2GTK for the GUI on Linux.

Windows

Download the installer from GitHub Releases:

winget install xmaryo.hugin

Windows 10+ x86_64.

Quick start

1. Start the proxy

hugin

Starts the MITM proxy on port 8080 and opens the desktop GUI.

2. Configure your browser

Set your browser or tool to use 127.0.0.1:8080 as HTTP(S) proxy.

Install the CA certificate from http://hugin.local/cert (auto-generated on first run).

3. Browse and test

All traffic flows through Hugin. Use the scanner, repeater, or intruder to test.

MCP setup

Connect Claude, Cursor, or any MCP-compatible AI to Hugin for automated security testing.

{
  "mcpServers": {
    "hugin": {
      "command": "hugin",
      "args": ["mcp"]
    }
  }
}

Add to your Claude Desktop claude_desktop_config.json or .mcp.json file.

Verify downloads

All release binaries are Ed25519 signed. After downloading, verify authenticity:

hugin verify hugin-cli-linux-x86_64.tar.gz

See verification instructions for manual verification without trusting the Hugin binary.