glitchedgitz / grroxy-issues Goto Github PK
View Code? Open in Web Editor NEWTo manage issues in grroxy.
Home Page: https://grroxy.com/
License: MIT License
To manage issues in grroxy.
Home Page: https://grroxy.com/
License: MIT License
on the list
command, it seems that the projects are sorted by update date (why not, it's not a bad idea)
But what I'm not sure to understand is the index, the index doesn't seem to be an ID linked to the project but rather a temporary display index. So the ID for a project will change from one execution to another. It means that in the future is there is a resume
command, we won't be able to rely on the index. Since the name is not unique it can't be 100% reliable too, meaning the only unique key will be the location path, which is not handy. so I believe a unique and permanent index should be linked to a project instead. So it will become a identifier (absolute) rather than an index number (relative to the sorting).
feature
suggestion
add a butoon to clear the history (maybe there is but I can't find it)
While in the webUI, trying to start a simpple fuzz :
A click on the notif could/should lead us to the opened fuzz pane in the playground :
On the playground, results are not shown yet but works after a refresh. Having here a prefix or color code to easily differentiate the different tasks would be super nice :
Starting the fuzz with a simple list and two threads (be gentle, default might/could be 5 to avoid "DOS by default" behavior for newcomers ๐น
Sadly, no results are shown after (incredibly fast??) completion :
I assume ffuf isn't found, yet it's present in my system (not default path maybe?), and there seems to not be any settings to specify the way to invoke it ?
Thaaaat being said, the work already done is truly impressive. Good job, and I'm really looking forward using your tool more!
Side note (not worth a full issue), I played a bit with the testSql & testCommand endpoints, allowing (you guessed it) post-auth command execution. This isn't something we'll be avoid with such tool and needs of "binary to run" configuration. But the auth and routing systems seems to be in place, working properly, and with no trivial bypass, congratz ! ๐ป
Have a lovely day,
Laluka
Whenever I click on another playground and go back and forth in the intruder tab history, the payload settings are reset to the defaults
using list
to resume a project isn't obvious
another issue with the list
command is that it's interactive
so it could be nice to add a resume
command with the index or location or project name as parameter so we could resume a project in an interactive way.
When I search for the Seclists wordlists raft-small-words.txt(https://github.com/danielmiessler/SecLists/blob/master/Discovery/Web-Content/raft-small-words.txt), I get no results. Should I install Seclists on my machine? If so, in which folder?
Also, all the web buttons add the same wordlists widget, so I think it's best to leave only wordlists in the menu, don't you?
feature
suggestion
create tooltips for each functionality/button/area.
Having 2 instances at the same time is not possible right now.
Launching a second instance:
Error: unknown command "create" for "grroxy-linux"
instead of saying that the host:port is already in use, that's very weird--ui-host
and --ui-port options
--proxy-host
and --proxy-port options
The options should not be only available for the create command but also for the list command when resuming an existing project.
Playgrounds are randomly disappearing forever
I guess a contextual menu could be added. maybe it was working on the desktop client but not on the webui?
When creating a new tab, I expect it to be a copy of the current one or a blank one, but instead a detectportal.firefox.com is populated.
I can create a diff tab, but it would be nice to have 'sent to diff' on contextual menu on HTTP request / answers as well.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.