Could my enterprise proxy know the content of an https request?

security privacy proxy

Absolutely. Several enterprise-level proxies support re-encrypting the connections your browser makes using a corporate certification authority. Essentially the administration team can push out a certificate to your workstation via group policies, and add it to the list of trusted authorities. The proxy then has the private key corresponding to that certificate and generates a certificate for each hostname on the fly. Then when your browser connects the proxy uses HTTPS to connect to the destination, but then encrypts the actual tunnel to your browser using the aforementioned certificate and private key.

There's also open source and free proxies capable of this interception (which is just an MITM attack made easy by the administrators having access to the trusted certificate list on each workstation).

Edit: You can detect this by inspecting who has signed the certificate for each HTTPS site, but the name can even match existing certificates so you'd have to compare the fingerprint to a known good one of each certificate authority.

Related

Giant active directory deployment vs giant Sun LDAP
How to exclude files/folders from code inspection in PHPStorm?
Symfony2 - creating own vendor bundle - project and git strategy
Does cargo install have an equivalent update command?
Lua - Current time in milliseconds
How to remove all elements of a certain class from the DOM?
How to disable "Access can be package-private" message in IntelliJ?
VS2010 docks code windows in the wrong place
How to convert DATE to UNIX TIMESTAMP in shell script on MacOS
How to set a timeout with AFNetworking
Get value from the cell above
How to display localhost traffic in Fiddler while debugging an ASP.NET application?