WSHawk v4 Overview
What WSHawk v4.0.0 is, where it fits, and what changed from the older scanner-centric releases.
WSHawk v4 Overview
WSHawk v4.0.0 is an open-source platform for authorized testing of WebSocket applications, stateful HTTP workflows, browser-authenticated sessions, authorization flaws, race conditions, and realtime application evidence.
What Changed in v4
Older WSHawk releases leaned much harder on scanner-first workflows and marketing-heavy feature claims. The current release is better understood as a local project-backed platform with the desktop app as the main operator surface.
The important shift is this:
- capture real traffic and identity context
- store it in a local project
- replay or compare stateful actions
- race state-changing operations
- review evidence and export a bundle
Core Capabilities
- desktop-first workflows for WebSocket and HTTP targets
- WebSocket and HTTP replay
- AuthZ diff across identities
- race testing for duplicate execution and invalidation windows
- browser companion pairing for scoped handshake capture
- web pentest workspace in the same project model
- local validation labs for regression proof
- evidence exports with provenance and integrity metadata
What WSHawk Is Not
WSHawk is not a full-spectrum red-team operating stack. It does not replace C2, endpoint tradecraft, or infrastructure operations. Its lane is offensive web and realtime application security work.