Short for “WebSocket/Socket.io Proxy”, this tool, written in Node.js, provides a user interface to capture, intercept, send custom messages and view all WebSocket and Socket.IO communications between the client and server. Upstream proxy support also means you can forward HTTP/HTTPS traffic to an intercepting proxy of your choice (e.g. Burp Suite or Pappy Proxy) but view WebSocket traffic in WSSiP. More information can be found on the blog post.
There is an outward bridge via HTTP to write a fuzzer in any language you choose to debug and fuzz for security vulnerabilities.
Run the following in your command line:
# Install Electron globally npm i -g email@example.com # Install wssip global for "wssip" command npm i -g wssip # Launch! wssip
yarn : (Make sure the directory in
yarn global bin is in your
yarn global add firstname.lastname@example.org yarn global add wssip wssip
You can also run
npm install electron (or
yarn add electron ) inside the installed WSSiP directory if you do not want to install Electron globally, as the app packager requires Electron be added to developer dependencies.