GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → redfast00 → malidate

redfast00 / malidate

Licence: MIT License
A logging DNS and HTTP(S) server. Opensource alternative to some parts of the Burpsuite Collaborator server.

Programming Languages

python
139335 projects - #7 most used programming language

Labels

securityhttp-serversecurity-toolsmalidate

Projects that are alternatives of or similar to malidate

yarx
An awesome reverse engine for xray poc. | 一个自动化根据 xray poc 生成对应 server 的工具
Stars: ✭ 229 (+638.71%)
Mutual labels:  http-server
finch-demo
Introduction to Finch, a lightweight HTTP server library based on Twitter's Finagle.
Stars: ✭ 19 (-38.71%)
Mutual labels:  http-server
DeepfakeHTTP
DeepfakeHTTP is a web server that uses HTTP dumps as a source for responses.
Stars: ✭ 373 (+1103.23%)
Mutual labels:  http-server
cs
开箱即用的基于命令的消息处理框架,让 websocket 和 tcp 开发就像 http 那样简单
Stars: ✭ 19 (-38.71%)
Mutual labels:  http-server
node-jsonrpc2
JSON-RPC 2.0 server and client library, with HTTP (with Websocket support) and TCP endpoints
Stars: ✭ 103 (+232.26%)
Mutual labels:  http-server
WebRelay
A netcat-like utility for windows for transferring files and streams over HTTP with support for relaying through a remote host (via websocket), a webclient, and a shell extension. PRs welcome!
Stars: ✭ 29 (-6.45%)
Mutual labels:  http-server
node-slack-events-api
Slack Events API for Node
Stars: ✭ 93 (+200%)
Mutual labels:  http-server
httoop
HTTOOP - a fully object oriented HTTP protocol library written in python
Stars: ✭ 15 (-51.61%)
Mutual labels:  http-server
oxen-storage-server
Storage server for Oxen Service Nodes
Stars: ✭ 19 (-38.71%)
Mutual labels:  http-server
crab
🦀 a simple web server
Stars: ✭ 18 (-41.94%)
Mutual labels:  http-server
kog
🌶 A simple Kotlin web framework inspired by Clojure's Ring.
Stars: ✭ 41 (+32.26%)
Mutual labels:  http-server
lazurite
A simple http server.
Stars: ✭ 17 (-45.16%)
Mutual labels:  http-server
EthernetWebServer
This is simple yet complete WebServer library for AVR, Portenta_H7, Teensy, SAM DUE, SAMD21/SAMD51, nRF52, STM32, RP2040-based, etc. boards running Ethernet shields. The functions are similar and compatible to ESP8266/ESP32 WebServer libraries to make life much easier to port sketches from ESP8266/ESP32. Coexisting now with `ESP32 WebServer` and…
Stars: ✭ 118 (+280.65%)
Mutual labels:  http-server
toyhttpd
I/O 模型练手代码,分别使用阻塞式 I/O、select、poll 和 epoll 和 Java NIO 实现了简单的 HTTP Server
Stars: ✭ 43 (+38.71%)
Mutual labels:  http-server
naboris
Simple, fast, minimalist http server for OCaml/ReasonML
Stars: ✭ 71 (+129.03%)
Mutual labels:  http-server
restana
Super fast and minimalist framework for building REST micro-services.
Stars: ✭ 380 (+1125.81%)
Mutual labels:  http-server
Kvpbase
Scalable, simple RESTful object storage platform, written in C#
Stars: ✭ 43 (+38.71%)
Mutual labels:  http-server
couper
Couper is a lightweight API gateway designed to support developers in building and operating API-driven Web projects
Stars: ✭ 60 (+93.55%)
Mutual labels:  http-server
static-web-server
A blazing fast and asynchronous web server for static files-serving. ⚡
Stars: ✭ 230 (+641.94%)
Mutual labels:  http-server
serville
Serville, the fast and easy HTTP API library for NodeJS.
Stars: ✭ 31 (+0%)
Mutual labels:  http-server
View All Similar Projects ➔

Malidate

An opensource logging DNS, HTTP and HTTPS server. Can be used to search for exploits with malformed HTTP requests as described in this whitepaper . There exists commercial software to do this (Burpsuite and the Burpsuite collaborator server), but that software isn't opensource.

Requirements

An HTTPS wildcard Certificate, an a domain set up to use the IP address this server is running on as DNS server.

Architecture

This project (malidate) is the server. When looking for vulnerabilities, clients can use any subdomain that is at least 17 characters long of the domain the malidate server is running on. Each client SHOULD prefix the subdomain they are using with a random alphanumeric string that is at least 16 characters long.

Endpoints

https://export.domain.com/prefix: all history about lookups and HTTP requests starting with that prefix are returned as JSON data. Since the prefix is unique and not trivially guessable, this will only return the lookups with your prefix.

Setup

sudo iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-ports 10443
sudo iptables -t nat -A PREROUTING -p tcp --dport 53 -j REDIRECT --to-ports 10053
sudo iptables -t nat -A PREROUTING -p udp --dport 53 -j REDIRECT --to-ports 10053
sudo iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-ports 10080

or, for debugging on the loopback interface

iptables -t nat -I OUTPUT -p tcp -d 127.0.0.1 --dport 80 -j REDIRECT --to-ports 8080
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].