WSSiP Logo

WSSiP

0
Free
Visit Website

Short for "WebSocket/Socket.io Proxy", this tool, written in Node.js, provides a user interface to capture, intercept, send custom messages and view all WebSocket and Socket.IO communications between the client and server. Upstream proxy support also means you can forward HTTP/HTTPS traffic to an intercepting proxy of your choice (e.g. Burp Suite or Pappy Proxy) but view WebSocket traffic in WSSiP. There is an outward bridge via HTTP to write a fuzzer in any language you choose to debug and fuzz for security vulnerabilities. See Fuzzing for more details. Written and maintained by Samantha Chalker (@thekettu). Icon for WSSiP release provided by @dragonfoxing. Installation From Packaged Application See Releases. From npx via npm (for CLI commands) Run the following in your command line: npx wssip. From Source Using a command line: # Clone repository locally git clone https://github.com/nccgroup/wssip # Change to the directory cd wssip # If you are developing for WSSiP: # npm i # If not... (as to minimize disk space): npm i electron npm i --production # Yarn version: # yarn add electron # yarn install

FEATURES

ALTERNATIVES

AWS Shield provides managed DDoS protection for your applications, automatically detecting and mitigating sophisticated network-level DDoS events.

Cilium is a networking, observability, and security solution with an eBPF-based dataplane.

A simple Docker-based honeypot to detect port scanning

Safing Portmaster is an open-source application firewall that monitors network connections, blocks trackers system-wide, and allows custom filtering rules at both global and per-application levels.

Open source security-oriented language for describing protocols and applying security policies on captured traffic.

Express middleware for detecting and redirecting Tor or Surface users.

An IP address intelligence API that provides geolocation data and threat detection capabilities for IPv4 and IPv6 addresses.

Exploiting simple stack overflow vulnerabilities using return oriented programming (ROP) to defeat data execution prevention - DEP.

PINNED