/w13scan

Passive Security Scanner (被动安全扫描器)

Primary LanguagePythonGNU General Public License v2.0GPL-2.0

W13Scan

W13scan is a proxy-based web scanner that runs on Linux/Windows/Mac systems.

GitHub issues GitHub forks GitHub stars GitHub license

简体中文 | English

声明

仅用于教育行为使用,其他用途后果自负

Begin

Demo https://youtu.be/WwIc2kDlKbc

Pure Python and Python version >= 3

Can you use star to encourage the author ?

📦 Install

$ sudo pip3 install w13scan

## update
$ sudo pip3 install -U w13scan

or

$ wget https://github.com/boy-hack/w13scan/archive/master.zip
$ unzip master.zip
$ cd master/W13SCAN
$ pip3 install -r ../requirement.txt
$ python3 cli.py -h

🔨 Usage

## help
$ w13scan -h

## running
$ w13scan -s 127.0.0.1:7778

HTTPS Support

If you want w13scan to support https, similar to BurpSuite, first need to set up a proxy server (default 127.0.0.1:7778), then go to http://w13scan.ca to download the root certificate and trust it.

⌨ Development

from W13SCAN.api import Scanner

scanner = Scanner(threads=20)
scanner.put("http://example.com/?post=1")
scanner.run()

By introducing the w13scan package, you can quickly create a scanner.

Contributors