Skip to content

jakubjn/WebSocketRace

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
__pycache__
__pycache__
 
 
App.py
App.py
 
 
README.md
README.md
 
 
Utility.py
Utility.py
 
 
WebSocketRace.py
WebSocketRace.py
 
 
data.json
data.json
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

WebSocketRace

A tool for exploiting race condition type vulnerabilities with websockets.

Some applications have switched from using HTTP as the primary protocol for interacting with data to using the Websockets protocol. However, many race conditions still remain to be found, which is why I created this tool. It can be used to simultanously send 2 websocket requests to an endpoint and detect a Race Condition.

The tool includes a UI but also a standard CLI interface.

Installation

To install run the following:

git clone https://github.com/jakubjn/WebSocketRace.git
pip install -r requirements.txt

Usage (UI)

python3 App.py

Usage (CLI)

To Run:

python3 WebSocketRace.py -gate 'GATE' -r

To Set First Request:

python3 WebSocketRace.py -gate 'GATE' -data_one "REQUEST"

To Set Second Request:

python3 WebSocketRace.py -gate 'GATE' -data_two "REQUEST"

To Set Origin Url:

python3 WebSocketRace.py -gate 'GATE' -o "URL"

To Set Connection Request:

python3 WebSocketRace.py -gate 'GATE' -c "REQUEST"

To Set Cookies:

python3 WebSocketRace.py -gate 'GATE' -b "COOKIES"

To Set Variables:

python3 WebSocketRace.py -gate 'GATE' -v "NAME:VALUE NAME:VALUE"

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages