This project is discontinued and the codebase is not in a good shape. It has not been maintained actively for a while and I will likely not restart working on it anytime soon.
Wapty (Web Application Penetration Testing Suite)y
An Open Source alternative to Burp Suite.
We are working to make wapty a worthy replacement for Burp, but we are not there yet.
go get github.com/empijei/wapty cd $GOPATH/src/github.com/empijei/wapty make installdeps make make install
on your browser set localhost:8080 as proxy
BEWARE: ignore proxy for localhost
Then visit localhost:8081
Root certs are in
for currently available features and what will be supported please refer to our roadmap.
Packages and Coverage
|Package Name||Currently Actively Developing||Development Phase||Test Coverage|
|decode||AnnaOpss||Usable, missing some codecs|
|repeat||Empijei||Only backend implemented|
|cli||Silverweed, Empijei||Commands Work|
|mocksy||Silverweed||Burp importer written, server and matcher stub written|
|plug||✗||Not implemented yet||N/A|
There is no documentation for this package.
Package intercept is meant to handle all the interception of requests and responses, including stopping and waiting for edited payloads.
|Package intercept is meant to handle all the interception of requests and responses, including stopping and waiting for edited payloads.|
Package mitm is the core of this project and is responsible for creating a proxy that intercepts all the HTTP/HTTPS traffic going through it.
|Package mitm is the core of this project and is responsible for creating a proxy that intercepts all the HTTP/HTTPS traffic going through it.|
Package ui is a general high level representation of all the uis connected to the current instance of Wapty.
|Package ui is a general high level representation of all the uis connected to the current instance of Wapty.|