Hookbin: Capture and Inspect HTTP Requests for Debugging

Learn how to capture, inspect, and debug HTTP requests, webhooks, and API calls with this essential web development tool.

What Is Hookbin?

Hookbin is a free web service designed to intercept, parse, and debug HTTP requests of any kind. Unlike traditional debugging tools that require you to be actively watching a browser console or network tab, Hookbin gives you a unique URL where any incoming request gets captured and stored for later inspection.

The service works on a simple premise: you create a unique "endpoint" URL, and any HTTP request sent to that URL gets recorded. Each endpoint comes with its own dashboard where you can view all captured requests, examine headers and payloads in detail, and even add notes to track your debugging progress.

Whether you're troubleshooting a Stripe webhook, debugging a contact form, or verifying that your API client sends expected headers, Hookbin gives you the visibility you need to understand exactly what's being transmitted over HTTP. This approach decouples the act of sending a request from the act of inspecting it, which proves invaluable when debugging asynchronous systems like webhooks.

Several common scenarios make Hookbin an essential tool in any developer's toolkit. Debugging webhooks from external providers represents one of the most frequent use cases--services like Stripe, PayPal, Twilio, and countless others send webhook notifications when events occur, and being able to see exactly what data they're sending helps troubleshoot integration issues quickly. Form debugging also benefits greatly, as you can point any form to a Hookbin endpoint and verify the exact payload your server will receive.

Common Use Cases

Webhook Debugging

Inspect payloads from Stripe, PayPal, Twilio, and other webhook providers to troubleshoot integration issues quickly and reliably.

Form Debugging

Verify exactly what data your forms are submitting by pointing them to a Hookbin endpoint and examining captured payloads.

API Testing

Test API calls by sending requests to your endpoint and examining the exact payload received at the destination.

File Upload Inspection

Debug multipart form data and examine the contents, metadata, and structure of uploaded files.

Getting Started with Hookbin

Creating a Hookbin endpoint takes seconds and requires no registration. Simply visit Hookbin.com and click the "Create New Endpoint" button. The service generates a unique URL using the domain hookb.in (distinct from hookbin.com, which serves as the dashboard interface).

Our web development team frequently uses tools like Hookbin to debug complex integrations and ensure reliable data transmission between systems. Understanding how to inspect HTTP requests is a fundamental skill for building robust web applications.

Endpoint Limits

Duration: Endpoints remain active for 7 days from creation
Storage: Each endpoint stores up to 100 requests
Size: Requests limited to 1MB total (returns 413 if exceeded)

Each endpoint has built-in limitations that balance utility with resource management. Endpoints remain active for seven days from creation, after which they're automatically deleted along with all captured requests. Each endpoint can store up to 100 requests; when this limit is reached, the oldest requests get removed to make room for new ones.

When you send a request to your endpoint, Hookbin always responds with a 200 OK status and {"success": true}. This ensures sending services don't interpret a Hookbin response as an error, while still giving you visibility into everything being transmitted.

Code Examples

Testing with cURL provides the quickest way to start using Hookbin. These examples demonstrate common scenarios you'll encounter when debugging HTTP requests.

Basic GET Request

curl https://hookb.in/yourEndpoint

A simple GET request to your endpoint demonstrates the basic functionality. This is useful for verifying that your endpoint is active and receiving requests.

POST Request with JSON

curl -X POST -H "Content-Type: application/json" \
 -d '{"name": "John", "age": 32}' \
 https://hookb.in/yourEndpoint

POST requests with JSON payloads show off the body parsing capabilities. Hookbin syntax-highlights and pretty-prints JSON, making nested structures easy to navigate.

File Upload

curl -X POST --form "file=@/path/to/image.jpg" \
 https://hookb.in/yourEndpoint

File uploads use the multipart form format. Hookbin captures each part separately, including file metadata like filename, content type, and size.

Request with Cookies

curl --cookie "session=abc123" \
 https://hookb.in/yourEndpoint

Cookie inspection works with a simple flag. This helps verify that cookies are being transmitted correctly and identifying any issues with session data.

What Hookbin Captures

HTTP Headers

Every captured request includes both request headers and response headers. This helps verify that headers are being set correctly and identifies any unexpected modifications that might occur along the way.

Key feature: Hookbin filters out headers added by proxy servers and CDNs between the original requester and Hookbin's servers. This means you see only the headers explicitly set by the sending application, not intermediate infrastructure that might obscure the original request characteristics.

For webhook debugging, header inspection proves particularly useful when troubleshooting signature verification issues--you can confirm exactly what headers the sending service includes and compare them against what your code expects.

Query Strings

URL query parameters are parsed and displayed as key-value pairs, making it easy to verify GET parameters. Simply append query strings to your endpoint URL and send the request--Hookbin parses these parameters and presents them in an organized format separate from the raw URL.

Request Bodies

Hookbin parses bodies based on content type:

JSON: Syntax-highlighted and pretty-printed for easy navigation
XML: Formatted for readability with proper indentation
Form data: URL-encoded and multipart formats fully supported
Raw: Text or binary payloads handled appropriately

File Uploads

Multipart form data gets special treatment with file metadata (filename, content type, size) displayed alongside contents. Files are stored in AWS S3 with a 7-day TTL for automatic cleanup.

Private Endpoints and Security

Private Endpoints

When creating an endpoint, check "Make it Private" to restrict access to only the browser where it was created. Others who visit the URL see only a private endpoint message. This feature proves useful when debugging sensitive integrations or when you want to prevent others with access to your shared development environment from seeing captured requests.

Private endpoints maintain all the same capabilities as public ones; they simply restrict visibility to a single browser instance while still capturing all requests normally.

Security Features

SSL-only: All connections encrypted with A+ SSL Labs grade
CORS: Wide-open CORS for browser-based testing without restrictions
7-day file TTL: Uploaded files automatically deleted after 7 days
Manual deletion: Delete individual requests or files anytime

The service enforces SSL-only connections, scoring an A+ grade on SSL Labs tests. This ensures that all data transmitted to and from Hookbin endpoints remains encrypted, protecting sensitive information like API keys, authentication tokens, or personal data.

For teams building secure API integrations, combining tools like Hookbin with comprehensive API development best practices ensures robust and secure data handling throughout your application.

Limitations

Requests limited to 1MB total (including headers) - returns 413 if exceeded
Endpoints expire after 7 days automatically
Maximum 100 requests stored per endpoint before oldest are removed

These constraints encourage focused debugging sessions while preventing the service from becoming a permanent data store. The seven-day endpoint lifespan means you shouldn't rely on Hookbin for long-term logging--it's a debugging tool, not a logging service.

Best Practices for Webhook Debugging

Effective webhook debugging combines Hookbin with sound development practices. Here are key strategies to get the most out of this tool:

Create dedicated endpoints for each integration you're debugging--this keeps request histories separate and makes it easier to correlate captured data with specific services
Add notes to captured requests to document your findings (up to 1,000 characters per note). Each captured request supports a note field where you can record observations, hypotheses, or conclusions
Configure sending services to use your Hookbin endpoint URL, then trigger events and examine captured payloads. Compare what you see against your code's expectations
Compare captured data against your code's expectations, looking for discrepancies in field names, data types, or nested structures that might cause integration issues
Rotate endpoints periodically for high-volume testing to avoid losing older requests when the 100-request limit is reached
Consider alternatives for permanent logging: locally-hosted requestbin, Beeceptor, or dedicated webhook testing services like Hookdeck for production monitoring

For complex debugging scenarios, use the notes feature to document your findings directly in Hookbin. This creates a permanent record of your debugging process that team members can review later.

When debugging performance-critical systems, remember that adding a Hookbin endpoint introduces a network hop between your sender and your actual endpoint. This additional latency (typically 100-300ms depending on geography) shouldn't affect debugging scenarios but could mask timing-related bugs if you're testing performance-sensitive code.

Related Debugging Tools

For comprehensive debugging capabilities, consider exploring related techniques for debugging HTTP requests and understanding how different tools complement each other in a complete debugging workflow.

Conclusion

Hookbin fills an essential niche in the web developer's toolkit by providing a simple, reliable way to capture and inspect HTTP requests. Its no-setup approach makes it accessible for quick debugging tasks, while its comprehensive feature set supports more complex integration testing scenarios.

Whether you're troubleshooting a Stripe webhook, debugging a contact form, or verifying that your API client sends expected headers, Hookbin gives you the visibility you need to understand exactly what's being transmitted over HTTP. The service's limitations--seven-day retention, 100-request storage, 1MB request size--actually encourage healthy debugging practices by keeping testing focused and temporary.

For permanent logging needs or high-volume scenarios, specialized solutions exist, but for day-to-day debugging of HTTP communications, Hookbin remains an invaluable tool that belongs in every developer's repertoire. Combined with proper web development practices and comprehensive API integration testing, tools like Hookbin help ensure your integrations work reliably in production.

If your team needs assistance with complex API integrations or webhook implementations, our web development experts can help design robust systems that handle HTTP communications effectively.

Need Help Debugging Your Webhooks or APIs?

Our web development team specializes in API integrations, webhook implementations, and complex HTTP communication debugging. Contact us for a free consultation.

Frequently Asked Questions

Sources

CSS-Tricks: Hookbin - Capture and Inspect HTTP Requests - Comprehensive guide from Hookbin's creator explaining features and technical implementation
Hookdeck: Complete Guide to Webhook Testing - Industry-standard webhook testing methodologies and best practices
Hookbin Official - The official Hookbin service for creating endpoints and capturing requests