Free Chrome Extension

Capture browser HTTP requests.
Export as cURL, Python, or Postman.
Secrets auto-redacted.

Stop copy-pasting from DevTools. Shripi sits in your browser, captures every API call as you browse, strips out tokens and keys automatically, and hands you ready-to-run code in one click.

Coming soon to Chrome Web Store See it in action
Shripi Shripi
Capturing
Filter requests…
All GET POST
GET/api/users20045ms
POST/api/auth/login201124ms
GET/api/products?page=120089ms
PUT/api/cart/items/4220067ms
GET/api/orders40123ms
DEL/api/sessions/old20431ms
6 requests 379ms total
100% LocalData never leaves your browser
Auto RedactionSensitive data hidden by default
8+ Export FormatsJSON, CSV, cURL, Python & more
Features

Everything you need for
API debugging

From capturing requests to exporting clean documentation,
Shripi handles the entire workflow.

01

Real-Time Request Capture

Capture API requests as they happen. Works with SPAs, dashboards, and any web app that makes API calls.

  • One-click start/stop per tab
  • One-click start/stop recording
  • Captures headers, bodies, timing & size
  • Configurable URL exclusion patterns
yourapp.com
GET/api/dashboard200
POST/api/analytics201
GET/api/users/me200
GET/api/notifications
Raw Request
AuthorizationBearer eyJhbGciOiJIUz...
Cookiesession=abc123def456
X-API-Keysk_live_4eC39HqLyj...
With env vars
Authorization${AUTHORIZATION}
Cookie${SESSION}
X-API-Key${X_API_KEY}
02

Smart Data Redaction

Automatically redact sensitive information before storage and export. Secrets stay secret — and your exports stay runnable.

  • Auth headers auto-redacted
  • Cookie & session token masking
  • Custom regex redaction patterns
  • Env var placeholders — exports run as-is
03

Export Anywhere

Export in the format you need. Copy as executable code for instant replay.

  • JSON, CSV, Markdown exports
  • Postman collection generation
  • Copy as cURL, Fetch, or Python
  • Debug bundles with replay scripts
curl -X GET \
  'https://api.example.com/users' \
  -H 'Accept: application/json' \
  -H 'Authorization: ${AUTHORIZATION}'
import requests

response = requests.get(
    'https://api.example.com/users',
    headers={
        'Accept': 'application/json',
    }
)
{
  "method": "GET",
  "url": "https://api.example.com/users",
  "status": 200,
  "duration": 45,
  "headers": { ... }
}

Export in any format

Whatever your workflow needs, Shripi has you covered.

JSON Structured data export
CSV Spreadsheet-ready
Markdown Human-readable reports
Postman Importable collections
cURL Command-line ready
Fetch JavaScript code
Python requests library
Debug Bundle ZIP with replay script
One click to code

From request to runnable code — instantly

Click any captured request. Pick your language. Hit copy.
Secrets are auto-redacted before you even see the output.

POST https://api.acme.com/v1/orders 201 87ms
Secrets redacted 
curl -X POST \
  'https://api.acme.com/v1/orders' \
  -H 'Content-Type: application/json' \
  -H 'Authorization: ${AUTHORIZATION}' \
  --data-raw '{
    "product_id": "prod_9xK2",
    "quantity": 2
  }'
import os
import requests

AUTHORIZATION = os.getenv('AUTHORIZATION')

response = requests.post(
    'https://api.acme.com/v1/orders',
    headers={
        'Content-Type': 'application/json',
        'Authorization': f'{AUTHORIZATION}',
    },
    json={
        'product_id': 'prod_9xK2',
        'quantity': 2,
    }
)
print(response.status_code, response.json())
const AUTHORIZATION = process.env.AUTHORIZATION;

const response = await fetch('https://api.acme.com/v1/orders', {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'Authorization': AUTHORIZATION,
  },
  body: JSON.stringify({
    product_id: 'prod_9xK2',
    quantity: 2,
  }),
});
const data = await response.json();
{
  "method": "POST",
  "url": "https://api.acme.com/v1/orders",
  "status": 201,
  "duration": 87,
  "requestHeaders": {
    "Content-Type": "application/json",
    "Authorization": "${AUTHORIZATION}"
  },
  "requestBody": {
    "product_id": "prod_9xK2",
    "quantity": 2
  }
}
Getting started

Up and running in seconds

Install

Add Shripi from the Chrome Web Store. One click, zero configuration needed.

Capture

Toggle capture on any tab. All HTTP requests are recorded in real time as you browse.

Export

Redact, filter, and export in any format. Share clean API history with your team.

More capabilities

Built for real debugging workflows

Flat & Grouped Views

Switch between a sortable flat table and domain-grouped endpoints. Resize columns to your liking.

Advanced Filtering

Filter by method, status code, time range. Search across URLs, headers, and request bodies.

Request Summary

Instant status breakdown, error rates, slowest requests, and top endpoints at a glance.

Session Management

Track sessions automatically. Keep history across sessions or capture only the current one.

Request Inspector

View full request and response details — headers, bodies, timing, and size — in a clean modal.

Clean Export Mode

Strip noisy headers like user-agent and sec-* automatically for cleaner, focused exports.

Changelog

What's New

v1.8
Env var placeholders & cookie improvements

Redacted values export as ${VARIABLE_NAME} env var placeholders in cURL and Python. Cookies now export correctly as --cookie / cookies={}.
v1.7
HAR 1.2 export & Pro plan launch

Export a standards-compliant HAR file compatible with Postman, Fiddler, and Charles Proxy. Pro plan launched at $19 one-time.
v1.6
Debug bundles & clean export mode

Export a full debug session as a ZIP archive. Strip browser noise headers in clean mode. Postman v2.1 collection export.
View full changelog
Use cases

Built for real workflows

Four things developers use Shripi for every day.

Debug a flaky API

Something's returning a 500 intermittently. Click record, reproduce the error, then export the exact request — headers, body, timing — as a cURL command to replay it in isolation.

Document an internal API

Click through your app's UI once and Shripi captures every endpoint hit. Export as a Postman collection or HAR file — instant, always-accurate API documentation.

Reverse-engineer a third-party API

Building an integration and there's no public docs? Capture the network traffic from the official web app, then export clean Python or Fetch code to replicate the same calls.

Reproduce a bug report

A user reports something is broken. Ask them to capture with Shripi and export a debug bundle — you get the exact request sequence, responses, and timing needed to reproduce it locally.

Frequently asked questions

Does it work with localhost and internal tools?
Yes. Shripi uses the Chrome DevTools Protocol to capture requests — it works on any URL including localhost, 127.0.0.1, staging environments, internal dashboards, and production apps. If your browser can load it, Shripi can capture it.
Does it capture request and response bodies?
Yes. Shripi captures full request and response payloads — JSON bodies, form data, query params, headers, cookies, status codes, and timing. You can inspect everything in the detail panel or include it in any export.
How do env var placeholders work in exports?
With Pro's env var mode enabled, instead of masking secrets as ${AUTHORIZATION} placeholders, Shripi emits them as real variable references. In Python it outputs os.getenv('AUTHORIZATION') at the top and uses an f-string in the header. In cURL it wraps the value in ${AUTHORIZATION}. Your exported code runs immediately after setting the right env vars — no manual editing.
Will it capture requests from iframes or service workers?
Shripi captures all network traffic from the top-level page and its iframes on the attached tab. Requests made by service workers are also captured when they originate from the same tab. Background sync and push notifications are not captured.
How does redaction work under the hood?
Redaction runs at two stages: at capture time (before data hits IndexedDB) and at export time. It uses configurable regex patterns to match header names (e.g. authorization, x-api-key), cookie names, and query/body parameter names. Matched values are replaced with ${KEY_NAME} placeholders. You can add your own patterns in Settings → Redaction.
Is captured data ever sent to your servers?
Never. All request data is stored locally in your browser's IndexedDB. Shripi has no backend that receives your traffic. The only network calls the extension makes are for authentication (Supabase) and payment processing (Paddle) — your captured API data never leaves your machine.
Can I export a full session as a Postman collection or HAR file?
Yes, both are Pro features. The Postman export generates a v2.1 collection with all captured requests grouped and ready to import. The HAR 1.2 export is compatible with Chrome DevTools, Fiddler, Charles Proxy, and any tool that accepts the HAR format.
What's the difference between Free and Pro?
Free includes the core extension — up to 500 captured requests, JSON and cURL export, and default header/cookie redaction. Pro ($19, one-time) adds unlimited history, all export formats (Python, Fetch, Postman, HAR, CSV, Markdown, debug bundle), custom regex redaction patterns, env var placeholders in exports, and all future updates.

Start debugging smarter — for free

Install Shripi and turn your next API call into runnable code in seconds.
No configuration. No sign-up required to start.

Coming soon to Chrome Web Store Unlock Pro for $19