Morty

Web content sanitizer proxy as a service

Morty rewrites web pages to exclude malicious HTML tags and attributes. It also replaces external resource references to prevent third party information leaks.

The main goal of morty is to provide a result proxy for searx, but it can be used as a standalone sanitizer service too.

Features:

HTML sanitization
Rewrites HTML/CSS external references to locals
JavaScript blocking
No Cookies forwarded
No Referrers
No Caching/Etag
Supports GET/POST forms and IFrames
Optional HMAC URL verifier key to prevent service abuse

Installation and setup

Requirement: Go version 1.10 or higher.

$ go get github.com/asciimoo/morty
$ "$GOPATH/bin/morty" --help

Usage

  -debug
        Debug mode (default true)
  -followredirect
        Follow HTTP GET redirect
  -ipv6
        Allow IPv6 HTTP requests (default true)
  -key string
        HMAC url validation key (base64 encoded) - leave blank to disable validation
  -listen string
        Listen address (default "127.0.0.1:3000")
  -proxy string
        Use the specified HTTP proxy (ie: '[user:[email protected]]hostname:port'). Overrides -socks5, -ipv6.
  -proxyenv
        Use a HTTP proxy as set in the environment (HTTP_PROXY, HTTPS_PROXY and NO_PROXY). Overrides -proxy, -socks5, -ipv6.
  -socks5 string
        Use a SOCKS5 proxy (ie: 'hostname:port'). Overrides -ipv6.
  -timeout uint
        Request timeout (default 5)
  -version
        Show version

Environment variables

Morty can additionally be configured using the following environment variables:

MORTY_ADDRESS: Listen address (default to 127.0.0.1:3000)
MORTY_KEY: HMAC url validation key (base64 encoded) to prevent direct URL opening. Leave blank to disable validation. Use openssl rand -base64 33 to generate.
DEBUG: Enable/disable proxy and redirection logs (default to true). Set to false to disable.

Docker

docker run -e DEBUG=false -e MORTY_ADDRESS=0.0.0.0:3000 dalf/morty

docker run -e DEBUG=false dalf/morty -listen 0.0.0.0:3000

Test

$ cd "$GOPATH/src/github.com/asciimoo/morty"
$ go test

Benchmark

$ cd "$GOPATH/src/github.com/asciimoo/morty"
$ go test -benchmem -bench .

Bugs

Bugs or suggestions? Visit the issue tracker.

Project Name	Stars	Repos Using This	Packages Using This	Most Recent Commit	Total Releases	Latest Release	Open Issues	License	Language
Trojan Go	6,292		3	2 months ago	80	September 14, 2021	122	gpl-3.0	Go
Go实现的Trojan代理，支持多路复用/路由功能/CDN中转/Shadowsocks混淆插件，多平台，无依赖。A Trojan proxy written in Go. An unidentifiable mechanism that helps you bypass GFW. https://p4gefau1t.github.io/trojan-go/
Proxybroker	3,367	9	3	4 days ago	12	March 12, 2019	98	apache-2.0	Python
Proxy [Finder \| Checker \| Server]. HTTP(S) & SOCKS :performing_arts:
Browserboxpro	2,223			9 hours ago				other	JavaScript
📷 BrowserBoxPro - The internet. But unrestricted. And secure. Remote browser isolation product, available here and in Pro for purchase on our website.
Stealth	865			4 months ago			28	gpl-3.0	JavaScript
:rocket: Stealth - Secure, Peer-to-Peer, Private and Automateable Web Browser/Scraper/Proxy
Encrypted Dns Server	746			a month ago	50	June 30, 2022	10	mit	Rust
An easy to install, high-performance, zero maintenance proxy to run an encrypted DNS server.
Tor2web	645			4 months ago			161	agpl-3.0	Python
Tor2web is an HTTP proxy software that enables access to Tor Hidden Services by mean of common web browsers
Tor Socks Proxy	410			21 days ago			11	gpl-3.0	Dockerfile
🐳 Tiny Docker image (🤏 10MB) as 🧅 Tor SOCKS5 proxy 🛡
Morty	350			a year ago	3	April 22, 2021	30	agpl-3.0	Go
Privacy aware web content sanitizer proxy as a service
Locatejs	276			8 months ago			1	mit	JavaScript
Check if your location is actually hidden
Webrtc Leak Prevent	261			5 years ago				apache-2.0	JavaScript
Prevent WebRTC leaks in Chromium browsers.