FICHA · AUR

paros

Java-based HTTP/HTTPS proxy for assessing web app vulnerabilities. Supports editing/viewing HTTP messages on-the-fly, spiders, client certificates, proxy-chaining, intelligent scanning for XSS and SQLi, etc.

  • web-security-proxy
  • GRAPHICAL
  • SECURITY
  • NETWORK
  • Launchable
official+codex · reviewed · Jun 3, 2026 description in en

Description

Web application traffic can be proxied, edited, and scanned for vulnerabilities. Security testers install it to assess HTTP messages, spiders, XSS, SQL injection, and proxy chains.

Security testing tools can disrupt services or expose credentials. Use only on applications where testing is authorized.

How to run

paros

Commands: paros

Permissions

Permissions not analysed for this source yet.