Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Using proxy to access target without internet #1834

Open
melid404 opened this issue Mar 19, 2024 · 1 comment
Open

Using proxy to access target without internet #1834

melid404 opened this issue Mar 19, 2024 · 1 comment

Comments

@melid404
Copy link

Hello,

I have a web site to scan which is accessible only using a local proxy. I would like to scan all plugins on that web site, so I need to use the api-token I already have.

If I use the following command, it's doing a basic scan:
wpscan --url http://target.local --proxy socks5://127.0.0.1:1080

However, I don't have internet access when using the proxy, so if I want to use -api-token parameter, wpscan fails to connect to wpscan.com.

Is there any way to get wpscan to use the proxy only for accessing the target but not api-token validation?
@rascapac
Copy link

rascapac commented Jul 9, 2024

Same problem here. Can we have an option to either use an offline database downloaded with the API key, or only send the scan to the proxy but leave the vulnerabilites checking outside the proxy.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@melid404 @rascapac