{"id":13842987,"url":"https://github.com/4ra1n/super-xray","last_synced_at":"2025-07-11T17:32:44.882Z","repository":{"id":63510640,"uuid":"567776256","full_name":"4ra1n/super-xray","owner":"4ra1n","description":"Web漏洞扫描工具XRAY的GUI启动器","archived":true,"fork":false,"pushed_at":"2023-05-19T11:02:30.000Z","size":7023,"stargazers_count":1234,"open_issues_count":5,"forks_count":142,"subscribers_count":16,"default_branch":"main","last_synced_at":"2024-08-05T17:35:28.871Z","etag":null,"topics":["vulnerability-scanners","web-security"],"latest_commit_sha":null,"homepage":"https://github.com/chaitin/xray","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/4ra1n.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.MD","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null}},"created_at":"2022-11-18T14:52:09.000Z","updated_at":"2024-08-05T14:17:50.000Z","dependencies_parsed_at":"2022-11-20T09:46:12.303Z","dependency_job_id":null,"html_url":"https://github.com/4ra1n/super-xray","commit_stats":null,"previous_names":[],"tags_count":16,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/4ra1n%2Fsuper-xray","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/4ra1n%2Fsuper-xray/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/4ra1n%2Fsuper-xray/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/4ra1n%2Fsuper-xray/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/4ra1n","download_url":"https://codeload.github.com/4ra1n/super-xray/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225745398,"owners_count":17517632,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["vulnerability-scanners","web-security"],"created_at":"2024-08-04T17:01:52.852Z","updated_at":"2024-11-21T14:30:34.134Z","avatar_url":"https://github.com/4ra1n.png","language":"Java","funding_links":[],"categories":["LLM分析过程","Java"],"sub_categories":[],"readme":"# Super Xray\n[![](https://img.shields.io/github/v/release/4ra1n/super-xray)](https://github.com/4ra1n/super-xray/releases/latest)\n![](https://img.shields.io/github/downloads/4ra1n/super-xray/total)\n![](https://img.shields.io/badge/build-JDK8-orange)\n![](https://img.shields.io/badge/Code%20Lines-7318-orange)\n\n如果本项目有帮助到你，可以点个`Star`支持作者\n\n## 介绍\n\n[xray](https://github.com/chaitin/xray) 是一款优秀的漏洞扫描工具，但目前只有命令行版本，通过 `config.yaml` 配置文件启动，很多情况下不好上手，需要一款 GUI 工具来帮助新人更快使用。本工具仅是简单的命令行包装，并不是直接调用方法。在 xray 的规划中，未来会有一款真正的完善的 GUI 版 XrayPro 工具，敬请期待。\n\n使用前提：\n- 本地有 `JRE/JDK 8+` 环境（如果使用内置`JRE`的`exe`版本无需`Java`环境）\n- 使用 `java -jar SuperXray.jar` 启动（在`Windows`中双击启动会有权限问题）\n- 前往 [ctstack](https://stack.chaitin.com/tool/detail?id=1) 或 [xray 下载站](https://download.xray.cool) 下载最新版 `xray` (本工具也有内置一键下载面板)\n\n[常见问题解决](https://github.com/4ra1n/super-xray/issues/98)\n\n注意：\n- 请使用 1080P 及以上分辨率，在 720P 及以下分辨率可能无法完全显示\n- 请使用最新版`xray`（目前是`1.9.4`版本，本工具未兼容老版本`xray`）\n- 支持两种方式的`exe`文件，`system`版使用系统的`JRE`，另一种内置了`JRE 8`\n\n1.4版本将全面适配黑暗主题：(浅色主题绝版)\n\n![](img/0015.png)\n\n支持中文和英文：\n\n![](img/0001.png)\n\n![](img/0002.png)\n\n可以方便地搜索poc并运行：\n\n![](img/0008.png)\n\n## 下载\n\n最新版下载地址：[Latest Release](https://github.com/4ra1n/super-xray/releases/latest)\n\n## 指定多个PoC\n\n搜索后复制到输入框，注意换行分割\n\n![](img/0007.png)\n\n## 与rad联动\n\n在0.8版本以后可以与`rad`联动：\n\n注意：先输入端口开启被动扫描，再打开`rad`配合\n\n![](img/0004.png)\n\n`1.6`版本的`SuperXray`对`RAD`联动部分加强，用命令表方式解决批量联动问题\n\n更多问题参考`1.6`版本发布文档\n\n## 下载面板\n\n在1.0版本以后新增下载面板\n\n一键下载最新版`xray`和`rad`工具：\n\n![](img/0005.png)\n\n## 子域名扫描\n\n在1.0版本以后支持子域名扫描，但是高级版才可以使用\n\n（测试`xray`高级版的子域名扫描功能效果不错）\n\n![](img/0006.png)\n\n## 反连平台\n\n1. 配置好客户端的反连平台后点击`配置服务端`\n2. 任意输入数据库文件名\n3. 任意输入token密码\n4. 不要改ip并输入一个监听端口\n5. 点击导出配置文件得到一个`reverse/config.yaml`\n6. 把`xray`和这个文件复制一份到服务端\n7. 服务端`./xray reverse`启动反连平台\n8. 在反连平台输入对应到`token`和`http url`即可（注意是ip格式例如http://1.1.1.1:8080）\n9. 开启主动扫描或被动扫描即可\n\n![](img/0009.png)\n\n## 服务扫描\n\n支持`Tomcat AJP`和一些`Weblogic IIOP`漏洞扫描\n\n![](img/0016.png)\n\n## 菜单\n\n帮助与支持\n\n![](img/0010.png)\n\n版本检测: 由于使用`Github API`查询版本，所有可能有一些延迟\n\n![](img/0011.png)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F4ra1n%2Fsuper-xray","html_url":"https://awesome.ecosyste.ms/projects/github.com%2F4ra1n%2Fsuper-xray","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F4ra1n%2Fsuper-xray/lists"}