Directories
¶
| Path | Synopsis |
|---|---|
|
cmd
|
|
|
interceptor
command
Command interceptor runs the Interceptor intercepting proxy: an HTTP/HTTPS forward proxy plus a localhost control plane that serves the web UI.
|
Command interceptor runs the Interceptor intercepting proxy: an HTTP/HTTPS forward proxy plus a localhost control plane that serves the web UI. |
|
internal
|
|
|
aiassist
Package aiassist is an optional, bring-your-own-key bridge to an LLM that explains requests, suggests payloads, and summarizes findings.
|
Package aiassist is an optional, bring-your-own-key bridge to an LLM that explains requests, suggests payloads, and summarizes findings. |
|
capture
Package capture streams HTTP bodies into the store as they pass through, without buffering them in memory.
|
Package capture streams HTTP bodies into the store as they pass through, without buffering them in memory. |
|
control
Package control serves the Interceptor UI and the REST + SSE control API on the fixed localhost control port.
|
Package control serves the Interceptor UI and the REST + SSE control API on the fixed localhost control port. |
|
curlgen
Package curlgen renders a captured request as a runnable curl command, so a tester (or the AI) can reproduce and iterate on it in a terminal.
|
Package curlgen renders a captured request as a runnable curl command, so a tester (or the AI) can reproduce and iterate on it in a terminal. |
|
harx
Package harx converts captured flows to and from the HAR 1.2 (HTTP Archive) format for interop with browsers, Postman, and other tooling.
|
Package harx converts captured flows to and from the HAR 1.2 (HTTP Archive) format for interop with browsers, Postman, and other tooling. |
|
intercept
Package intercept implements the request hold queue (Burp-style intercept) and the request-side match-&-replace engine.
|
Package intercept implements the request hold queue (Burp-style intercept) and the request-side match-&-replace engine. |
|
intruder
Package intruder runs payload-driven attacks (Sniper, Pitchfork) against a request template whose fuzz points are wrapped in §…§ markers.
|
Package intruder runs payload-driven attacks (Sniper, Pitchfork) against a request template whose fuzz points are wrapped in §…§ markers. |
|
mcp
Package mcp implements a Model Context Protocol server over stdio so an AI agent can operate Interceptor as a set of tools.
|
Package mcp implements a Model Context Protocol server over stdio so an AI agent can operate Interceptor as a set of tools. |
|
proxy
Package proxy implements an intercepting HTTP/HTTPS forward proxy that captures every flow.
|
Package proxy implements an intercepting HTTP/HTTPS forward proxy that captures every flow. |
|
report
Package report renders scanner findings as a human-readable Markdown report, ready to paste into a pentest writeup.
|
Package report renders scanner findings as a human-readable Markdown report, ready to paste into a pentest writeup. |
|
scanner
Package scanner runs passive security checks over captured flows.
|
Package scanner runs passive security checks over captured flows. |
|
scope
Package scope evaluates target-scope rules: which flows are "in scope" for an engagement.
|
Package scope evaluates target-scope rules: which flows are "in scope" for an engagement. |
|
sender
Package sender issues one-off HTTP/HTTPS requests directly to a target (bypassing the proxy listener) and records each as a flow.
|
Package sender issues one-off HTTP/HTTPS requests directly to a target (bypassing the proxy listener) and records each as a flow. |
|
store
Package store persists flow metadata in SQLite and bodies on disk.
|
Package store persists flow metadata in SQLite and bodies on disk. |
|
sysproxy
Package sysproxy points the operating system's HTTP/HTTPS proxy at Interceptor (and turns it back off).
|
Package sysproxy points the operating system's HTTP/HTTPS proxy at Interceptor (and turns it back off). |
|
tlsca
Package tlsca manages a local certificate authority for TLS interception: it loads or generates a CA, then mints and caches short-lived per-host leaf certificates signed by that CA so the proxy can terminate client TLS.
|
Package tlsca manages a local certificate authority for TLS interception: it loads or generates a CA, then mints and caches short-lived per-host leaf certificates signed by that CA so the proxy can terminate client TLS. |
|
wsrepeater
Package wsrepeater opens a fresh WebSocket connection to a target, sends one message, and captures the frames the server returns — a "Repeater" for WebSockets.
|
Package wsrepeater opens a fresh WebSocket connection to a target, sends one message, and captures the frames the server returns — a "Repeater" for WebSockets. |
Click to show internal directories.
Click to hide internal directories.