Security News > 2023 > September > Reaper: Open-source reconnaissance and attack proxy workflow automation
Reaper is an open-source reconnaissance and attack proxy, built to be a modern, lightweight, and efficient equivalent to Burp Suite/ZAP. It focuses on automation, collaboration, and building universally distributable workflows.
Reaper is a work in progress, but it's already capable of much.
Manage multiple projects and project-specific settings using workspaces.
Incrementally craft workflows to attack web applications using our unique GUI. Automate simple tasks like fuzzing, brute-forcing etc.
Create, share, and collaborate on custom workflows to automate your testing.
"I love tools like Burp and ZAP but often struggle with creating workflows. Sharing sequences of events with colleagues or when reporting bugs has always been a struggle, and demonstrating a complicated process with a huge Python script always lacks a visual element - especially when a shared script fails, and somebody is left struggling to reproduce a bug I've found. Reaper is an attempt at making it easy to share exploits and bug reproductions and make exploits easier to understand generally using a visual reference," Liam Galvin, Senior Software Engineer at Ghost Security and lead developer for Reaper, told Help Net Security.
News URL
Related news
- WebCopilot: Open-source automation tool enumerates subdomains, detects bugs (source)
- Mantis: Open-source framework that automates asset discovery, reconnaissance, scanning (source)
- New open-source project takeover attacks spotted, stymied (source)
- Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks (source)