Skip to content

Latest commit

 

History

History
63 lines (52 loc) · 2.8 KB

README.md

File metadata and controls

63 lines (52 loc) · 2.8 KB
Raw

wprox "web proxy"

an experimental web proxy for penetration testing, phishing simulations.

DISCLAIMER: This is only for testing or research purposes, where permission from upstream site owners has been given. Do not use this tool for illegal purposes!

This tool starts a web server which proxies a given site. It can log all traffic including form submissions, cookies, etc.

This can be useful for conducting phishing simulations or for analyzing web apps as part of a penetration test

Basic Usage & Example Output

$ python3 wprox.py --host altoromutual.com --proto http
 __  __  __  _____   _ __   ___   __  _
/\ \/\ \/\ \/\ '__`\/\`'__\/ __`\/\ \/'\
\ \ \_/ \_/ \ \ \L\ \ \ \//\ \L\ \/>  </
 \ \___x___/'\ \ ,__/\ \_\ \____//\_/\_\
  \/__//__/   \ \ \/  \/_/ \/___/ \//\/_/
               \ \_\
                \/_/

a lightweight web proxy for penetration testing, phishing simulations.

DISCLAIMER: This is only for testing or research purposes,
where permission from upstream site owners has been given.

Do not use this tool for illegal purposes!

usage: wprox.py [-h] [--host HOST] [--proto PROTO] [--bind_ip BIND_IP] [--bind_port BIND_PORT]
                [--num-threads NUM_THREADS] [--dev-mode] [--debug]
                [--break BREAKPOINTS [BREAKPOINTS ...]] [--break-redir BREAK_REDIR]
                [--secrets-log SECRETS_LOG] [--traffic-log TRAFFIC_LOG] [--trusted-proxy TRUSTED_PROXY]
                [--log {all,secrets,traffic,none}] [--filters FILTER_EXPRS [FILTER_EXPRS ...]]

optional arguments:
  -h, --help            show this help message and exit
  --host HOST           The host to proxy.
  --proto PROTO         protocol to use (http/https).
  --bind_ip BIND_IP     Bind IP address
  --bind_port BIND_PORT
                        Bind Port
  --num-threads NUM_THREADS
                        Number of threads for request serving
  --dev-mode            Use flask dev server (not recommended)
  --debug               Print some extra debug info
  --break BREAKPOINTS [BREAKPOINTS ...]
                        "break" drop requests to a specific path on this server, like analytics,
                        logging, 2fa. e.g.: --break "POST:/login/2fa"
  --break-redir BREAK_REDIR
                        Redirect to arbitrary location when breakpoint is triggered
  --secrets-log SECRETS_LOG
                        Logfile to write secrets to
  --traffic-log TRAFFIC_LOG
                        Logfile to write traffic logs to
  --trusted-proxy TRUSTED_PROXY
                        When running behind a reverse-proxy, trust it to pass headers containing
                        forwarded info
  --log {all,secrets,traffic,none}
                        Set traffic types to log
  --filters FILTER_EXPRS [FILTER_EXPRS ...]
                        Filter logs to specific expressions (regex supported)