Skip to content

VDA-Labs/websocket-harness

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 

Repository files navigation

This python script can be placed between traditional web penetration testing tools and WebSocket connections, which does translation from HTTP to WebSocket and back. Think of it like a fuzzing harness that is used for native code.

Example: python websocket-harness.py -p 8000 -u ws://dvws.local:8080/authenticate-user

In the example above, the WebSocket harness will listen on local loopback, and forward any HTTP POST requests to the target WebSocket endpoint (ws://dvws.local:8080/authenticate-user).

Happy bug hunting!

About

Use normal web pentest tools to hack Websockets

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages