Arg3Sea

Arg3Sea / web-crypto-proxy

Public

一个专为渗透测试、安全研究员设计的AI 驱动的 Web 加密流量代理解决方案。输入一个目标 URL,即可自动完成从 JS 逆向分析到 mitmproxy 脚本生成的完整流程,实现 Burp Suite 与目标服务器之间的双向透明加解密。

17
1
69% credibility
Found Apr 29, 2026 at 17 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
AI Summary

An AI-powered solution that automatically analyzes website encryption logic and generates proxy scripts for transparent decryption and encryption during authorized security testing.

How It Works

1
🔍 Discover the tool

You learn about a smart helper that unlocks encrypted website secrets for safe security testing.

2
🏠 Choose your test site

You pick a website where you have full permission to check for security weaknesses.

3
🚀 Feed it the address

You simply share the website's address with the tool, and it springs into action automatically.

4
🔬 It studies the secrets

The tool examines the site's hidden codes and figures out exactly how the encryption works.

5
📋 Receive your magic bridge

It hands you a ready-made helper script and a clear report to make everything transparent.

6
🔗 Link up your tester

You connect your security testing software through this new bridge for smooth flow.

Test in clear view

Now you send and see plain messages effortlessly, conquering tough encrypted checks with ease.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 17 to 17 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is web-crypto-proxy?

Web-crypto-proxy automates crypto reversal for web pentests: input a target URL, and its AI scans JS for algorithms like RSA, AES, or SM algorithms, extracts keys, and generates a mitmproxy Python script. This creates a transparent proxy chain—Burp Suite handles plaintext requests/responses, while the proxy encrypts outbound traffic and decrypts inbound, solving manual decryption drudgery. Run "skill: web-crypto-proxy https://target.com" for instant analysis reports, downloaded JS, and a plug-and-play script.

Why is it gaining traction?

It skips tedious url web scans and web url encoders by auto-generating Burp-compatible proxies, letting you blast Intruder payloads or tweak params in plaintext. Unlike basic mitmproxy setups, the AI handles nested JSON crypto and form fields out-of-box, streamlining workflows for encrypted APIs. Devs dig the one-shot output for github web projects, pairing nicely with tools like web github copilot for quick script tweaks.

Who should use this?

Pentest engineers running Burp Intruder on login forms or SQLi against crypto sites. Security researchers probing web url scans for key leaks in JS-heavy apps. Red teamers chaining it with upstream proxies for authorized web url checks, bypassing frontend obfuscation.

Verdict

With 17 stars and 0.7% credibility, it's raw—great README but zero tests or broad validation signals immaturity. Try it for Burp crypto proxies if you're in pentests; otherwise, stick to manual tools until it matures.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.