{"id":13843968,"url":"https://github.com/Getshell/PassiveScan","last_synced_at":"2025-07-11T21:32:14.518Z","repository":{"id":107948941,"uuid":"442414046","full_name":"Getshell/PassiveScan","owner":"Getshell","description":"PassiveScan-被动扫描之巅","archived":false,"fork":false,"pushed_at":"2023-12-15T09:32:59.000Z","size":3715,"stargazers_count":64,"open_issues_count":0,"forks_count":6,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-05-20T12:38:17.439Z","etag":null,"topics":["0e0w","mitm","mitmproxy","passivescan","proxy"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Getshell.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2021-12-28T09:29:29.000Z","updated_at":"2024-04-13T10:07:59.000Z","dependencies_parsed_at":"2023-12-15T10:50:42.805Z","dependency_job_id":null,"html_url":"https://github.com/Getshell/PassiveScan","commit_stats":null,"previous_names":["getshell/passivescan"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Getshell/PassiveScan","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getshell%2FPassiveScan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getshell%2FPassiveScan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getshell%2FPassiveScan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getshell%2FPassiveScan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Getshell","download_url":"https://codeload.github.com/Getshell/PassiveScan/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Getshell%2FPassiveScan/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":264902663,"owners_count":23681103,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["0e0w","mitm","mitmproxy","passivescan","proxy"],"created_at":"2024-08-04T17:02:31.691Z","updated_at":"2025-07-11T21:32:13.811Z","avatar_url":"https://github.com/Getshell.png","language":null,"readme":"# PassiveScan-被动扫描之巅\n\n![CodeQL](https://socialify.git.ci/ASTTeam/PassiveScan/image?description=0\u0026font=Inter\u0026forks=1\u0026issues=1\u0026name=1\u0026owner=0\u0026pattern=Floating%20Cogs\u0026pulls=1\u0026stargazers=1\u0026theme=Light)\n\nDAST漏洞扫描一般分俩类：主动扫描和被动扫描。主动扫描一般是对通过爬虫获取到的参数发起扫描，被动扫描一般是根据代理流量中的参数发起扫描。因为爬虫技术的技术劣势，部分漏洞通过主动扫描几乎不可能发现，必须通过被动扫描实现。被动扫描结合爬虫技术往往是DAST的最优解。这正是本项目准备解决的问题。作者：[0e0w](https://github.com/0e0w)\n\n本项目创建于2021年12月28日，最近的一次更新时间为2023年12月15日。\n\n- [01-被动扫描资源]()\n- [02-被动扫描项目]()\n- [03-网站爬虫项目]()\n- [04-代理流量项目]()\n- [05-被动扫描参考]()\n\n## 01-被动扫描资源\n\n- [ ] https://github.com/0e0w/MITM\n- [ ] https://paper.seebug.org/1473\n\n## 02-被动扫描项目\n\n一、Golang\n- [ ] https://github.com/chaitin/xray\n- [ ] https://github.com/Magicskys/Kiddy\n- [ ] https://github.com/virink/xray-weblisten-ui\n- [ ] https://github.com/ssssdl/GoHttpProxyScan\n- [ ] https://github.com/IceMoon1995/jray\n- [ ] https://github.com/momosecurity/FindSomething\n\n二、Python\n- [ ] https://github.com/knownsec/LSpider\n- [ ] https://github.com/guimaizi/testing_wave\n- [ ] https://github.com/amcai/myscan\n- [ ] https://github.com/ysrc/GourdScanV2\n- [ ] https://github.com/w-digital-scanner/w13scan\n- [ ] https://github.com/timwhitez/crawlergo_x_XRAY\n- [ ] https://github.com/jiangsir404/pbscan\n- [ ] https://github.com/ydxred/NagaScan\n- [ ] https://github.com/clancyb00m/PassiveSqlCheck\n- [ ] https://github.com/imagemlt/LoggedProxy\n- [ ] https://github.com/wdsjxh/fiddler_tools\n- [ ] https://github.com/fanxs-t/Shadow-Border\n- [ ] https://github.com/YagamiiLight/Cerberus\n- [ ] https://github.com/grayddq/PassiveSecCheck\n- [ ] https://github.com/grayddq/PassiveDataSorting\n- [ ] https://github.com/cqkenuo/SecXss\n- [ ] https://github.com/ghtwf01/excavator\n\n三、Java\n- [ ] https://github.com/c0ny1/passive-scan-client\n- [ ] https://github.com/songxiaomo1997/ScanStation\n- [ ] https://github.com/EmYiQing/Burpsuite-JSScan\n\n四、JS\n- [ ] https://github.com/yu2lulu/passiveproxy\n\n五、C#\n- [ ] https://github.com/XiaoTouMingyo/ProxyScan\n\n## 03-网站爬虫项目\n\n一、Golang\n- [ ] https://github.com/Qianlitp/crawlergo\n- [ ] https://github.com/chaitin/rad\n\n二、Python\n\n## 04-代理流量项目\n\n此部分包括流量代码转发篡改的相关项目底层库等。\n\n一、Golang\n- https://github.com/topics/mitmproxy?l=go\n- https://github.com/search?l=Go\u0026q=mitmproxy\n- https://github.com/search?l=Go\u0026q=MITM\n- [ ] https://github.com/google/martian\n- [ ] https://github.com/lqqyt2423/go-mitmproxy | 用Go实现的中间人攻击 | 195\n- [ ] https://github.com/projectdiscovery/proxify\n- [ ] https://github.com/wuhan005/Houki | 简单的 golang mitm 代理实现 | 20\n- [ ] https://github.com/hupe1980/mitmproxy | Golang mitm 代理实现 | 0\n- [ ] https://github.com/elazarl/goproxy | Go 的 HTTP 代理库 | 4.6k\n- [ ] https://github.com/ouqiang/mars | HTTP(S)代理, 用于抓包调试 153\n- [ ] https://github.com/AdguardTeam/gomitmproxy | 简单的 golang mitm 代理实现 | 54\n- [ ] https://github.com/bettercap/bettercap\n- [ ] https://github.com/9seconds/httransform\n- [ ] https://github.com/moriyoshi/devproxy\n- [ ] https://github.com/yinqiwen/gsnova\n- [ ] https://github.com/Gh0u1L5/AutoSQL\n- [ ] https://github.com/xiaohaogong/AutoSQL\n- [ ] https://github.com/Dk0n9/goFoxy\n- [ ] https://github.com/nicecp/GoIyov\n- [ ] https://github.com/faceair/betproxy\n- [ ] https://github.com/telanflow/mps\n- [ ] https://github.com/snaigle/mitm-proxy\n- [ ] https://github.com/ffutop/mitmproxy\n- [ ] https://github.com/pulkitsharma07/proxybench\n- [ ] https://github.com/yarochewsky/mitmproxy-go\n- [ ] https://github.com/sunshibao/go-gomitmproxy\n- [ ] https://github.com/dstotijn/hetty\n- [ ] https://github.com/starkandwayne/gotcha\n- [ ] https://github.com/DataHenHQ/till\n- [ ] https://github.com/Binject/backdoorfactory\n- [ ] https://github.com/faceair/betproxy\n- [ ] https://github.com/cheahjs/wintun-mitm\n- [ ] https://github.com/blck-snwmn/proxymitm\n- [ ] https://github.com/davidpenn/mitm\n- [ ] https://github.com/yarochewsky/mitmproxy-go\n- [ ] https://github.com/jmizell/GoMITMProxy\n- [ ] https://github.com/yarochewsky/mitmproxy-go\n- [ ] https://github.com/moriyoshi/devproxy\n- [ ] https://github.com/coyove/goflyway\n- [ ] https://github.com/zboya/gomitmproxy\n- [ ] https://github.com/buger/goreplay\n- [ ] https://github.com/malfunkt/hyperfox\n- [ ] https://github.com/Adrosar/rtmor\n- [ ] https://github.com/cokeBeer/go-mitm\n- [ ] https://github.com/syncsynchalt/dime-a-tap\n- [ ] https://github.com/lyyyuna/mitm\n\n二、Python\n- [ ] https://github.com/netxfly/passive_scan\n- [ ] https://github.com/mitmproxy/mitmproxy\n\n三、Java\n\n## 05-被动扫描参考\n\n- https://github.com/ASTTeam/PassivesScan\n\n[![Stargazers over time](https://starchart.cc//0e0w/PassivesScan.svg)](https://starchart.cc/0e0w/PassivesScan)\n\n","funding_links":[],"categories":["Others"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FGetshell%2FPassiveScan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FGetshell%2FPassiveScan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FGetshell%2FPassiveScan/lists"}