Comments (3)
FUZZ的话正常情况还是习惯了Burp
from yakit.
感谢建议
支持设置上一级代理,对流量进行被动扫描,重点是可视化展示扫描的漏洞结果。
在启动 MITM 的时候一直可以设置下游代理,只是没有明显的说可以接其他被动扫描工具用于扫描,后续与其他工具的联动将会用各种文章来补充说明。
很多时候希望把更多的 自动化 / 半自动 的功能,放在 MITM 的插件系统
插件系统的接口目前还不够好用,应该再有几个版本,会有更好用的插件接口/输出,和自带的一些比较好用的插件来辅助工作。
关于插件的数据和漏洞入库展示,其实也算是插件系统的一部分。
from yakit.
@XTeam-Wing 为了感谢您对yak和yakit的支持,我们想邮寄一份小礼物给您,麻烦您微信添加一下:Juzi19880818,并备注好您的github账号。如已经添加账号,请微信联系我一下,谢谢
from yakit.
Related Issues (20)
- 【BUG】mitm交互劫持使站点无法正常加载完整js,如下 HOT 2
- Yakit代理问题 HOT 10
- CVE-2023-28432-Minio信息泄露(ID:6d62e2f1-dfa1-49d9-ad05-b59df6f22bf4)插件存在漏报 HOT 1
- Mitm中的fuzz模块对于xml的支持 HOT 2
- yakit不能启动引擎问题 HOT 3
- 登录错误 HOT 2
- 【需求】建议在流量出口增加热加载功能 HOT 7
- 【需求】流量表增加响应时间字段
- 请问risk.type漏洞类型对照表对照表在哪看,risk.type类型好像必须写对,不然结果为“其它” HOT 1
- 【需求】MITM交互式劫持规则匹配增加筛选或定位 HOT 2
- [bug] release版本的问题 HOT 1
- 【BUG】cli.StringSlice未按正常逻辑展示
- 【bug】在调用nuclei-yaml poc时,dnslog的poc无法检测出漏洞,但dnslog检测到记录 HOT 3
- [bug] Accept-Encoding : zstd 未解压缩导致乱码 HOT 1
- 不支持hosts解析覆盖? HOT 3
- [BUG]Host解析问题 HOT 3
- 【BUG】GetCommonParams函数问题 HOT 2
- 【需求】提交数据,丢弃数据,自定义快捷键 HOT 1
- 请求过多导致的失败 HOT 2
- 【BUG】弱口令爆破的次数异常 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from yakit.