Download Hugin

Single binary. No dependencies. No account required.

Star on GitHub
macOS
Linux
Windows

Quick start

1. Start the proxy

hugin

Starts the MITM proxy on port 8080 and opens the desktop GUI.

2. Configure your browser

Set your browser or tool to use 127.0.0.1:8080 as HTTP(S) proxy.

Install the CA certificate from http://hugin.local/cert (auto-generated on first run).

3. Browse and test

All traffic flows through Hugin. Use the scanner, repeater, or intruder to test.

MCP setup

Connect Claude Code, Cursor, or any MCP client to Hugin for AI-driven security testing.

{
  "mcpServers": {
    "hugin": {
      "command": "hugin",
      "args": ["mcp"]
    }
  }
}

Add to your claude_desktop_config.json or .mcp.json file.

Verify downloads

All release binaries are Ed25519 signed. After downloading, verify authenticity:

hugin verify hugin-cli-linux-x86_64.tar.gz

See verification instructions for manual verification without trusting the Hugin binary.