We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
数据爆破后台或者做webfuzz的时候往往不止2个点,比如x-forwarded-for ,referer , user-agent等 还要做参数fuzz 设置2个字典有点不够用,能不能自定义添加更多字典
The text was updated successfully, but these errors were encountered:
还有个小问题,每次数据监视的时候,服务器都会断掉web服务,不知道什么原因,本机监视virtualbox靶机都会连接不上,关掉dude就好了
Sorry, something went wrong.
第一个问题:x-forwarded-for ,referer , user-agent,这个主要是需要动态避免被识别··· 而不是真的要字典去爆吧,这个我后续看看使用随机荷载满足,在测试中多字典应用在web爆破上2个字典的叠加爆破量已经高到有点难接受了是几何级增长的,2个以上根本没有爆破成功的可能(时间)。
第二个问题:数据监视的时候服务器都会断掉web服务,本机监视virtualbox靶机都会连接不上。这个··· 不是很明白为什么会这样,大概率很软件本身无关,软件使用了edge做浏览器内核,数据监视使用类似F12的DevTools的技术,纯被动监测且不是拦截监测那种,并不会对web服务造成影响或被监测到,也就是说用这个工具打开网页和用edge打开网页代码行为网络活动是完全一致的。
大佬,qq或者微信搞个群啊,我给你当打手啊!:)
No branches or pull requests
数据爆破后台或者做webfuzz的时候往往不止2个点,比如x-forwarded-for ,referer , user-agent等 还要做参数fuzz 设置2个字典有点不够用,能不能自定义添加更多字典
The text was updated successfully, but these errors were encountered: