Comments (4)
还有,可以增加 “非”关键字过滤,也就是响应中出现某个关键字就过滤掉,不显示。
比如某接口直接请求会响应:
{"status": -3, "message": "\u83b7\u53d6\u6570\u636e\u5931\u8d25"}
那我就想通过\u83b7\u53d6\u6570\u636e\u5931\u8d25 过滤掉一大批接口。
这个功能可以在html上实现,也可以在参数上加,建议在html上实现。
from packer-fuzzer.
html可以把相同的响应列出来。需要鉴权的响应内容其实都一样,根据返回长度排序,很快能分析出真正有未授权的接口。
from packer-fuzzer.
html可以把相同的响应列出来。需要鉴权的响应内容其实都一样,根据返回长度排序,很快能分析出真正有未授权的接口。
此功能已经实现:3b86f52
from packer-fuzzer.
1:HTTP状态码过滤,如500,401,403等。
3:增加可选的授权参数,如--token/--cookie,对比授权和未授权请求某API的返回内容进行过滤。
1和3两个功能已经存在,可见说明文档,感谢您的支持!我们会持续优化
from packer-fuzzer.
Related Issues (20)
- windows python3.9安装依赖报错: HOT 1
- 添加了一个配套工具,希望大家能喜欢。 HOT 1
- 为什么没有赞赏功能?
- 加代理报错 -p http://127.0.0.1:8080 HOT 4
- 路径含有特殊字符提取报错
- 可以新增一个专门导出api清单的选项吗 HOT 1
- ImportError: cannot import name 'parse_xml' from 'docx.oxml' HOT 2
- ImportError: cannot import name 'parse_xml' from 'docx.oxml' (/usr/local/lib/python3.8/dist-packages/docx/oxml/__init__.py) HOT 8
- /usr/local/lib/python3.9/dist-packages/node_vm2/__init__.py:17: FutureWarning: node_vm2 is deprecated. Please use deno_vm instead. warnings.warn("node_vm2 is deprecated. Please use deno_vm instead.", FutureWarning) HOT 5
- 异步JS提取中的正则问题
- KeyError: 'zh' HOT 3
- 新安装报错 ImportError: cannot import name 'OxmlElement' from 'docx.oxml.xmlchemy' HOT 4
- 这是为什么啊 HOT 1
- 这是什么情况呢?大佬给个指导 HOT 7
- 请问【检测到提取结果不准确,请输入新的BaseDir (使用逗号分隔):】我应该填啥呀,似乎应该是填目录,但是这边目录太多怎么办 HOT 1
- 导入库时失败 HOT 1
- 扫描报告中API清单没有信息 HOT 1
- 是不支持https协议吗 HOT 2
- [!] 检测到提取结果不准确,请输入新的BaseDir (使用逗号分隔): HOT 1
- https自建证书运行会报错 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from packer-fuzzer.