CaidoReflector

April 30, 2025 ยท View on GitHub

CaidoReflector is a passive workflow for Caido that will automatically look for paramater reflections in the HTTP response.

Caution

I would recommend avoiding this workflow for now as it might significantly slow down your Caido project, we are working on a better alternative

  1. Install EvenBetter extension https://github.com/bebiksior/EvenBetter
  2. Go to Workflows -> Library
  3. Search for CaidoReflector and click Add
  4. Done ๐ŸŽ‰

Installation [without EvenBetter plugin]

  1. Download https://github.com/bebiksior/CaidoReflector/blob/main/Reflector.json
  2. In Caido, navigate to the Workflows page
  3. Click Import and select the downloaded JSON file.
  4. Done ๐ŸŽ‰

TODO

  • support query parameters without value
  • support JSON request body
  • allow users to easily disable scanning POST requests

Contribution

Feel free to contribute! If you'd like to request a feature or report a bug, please create a GitHub Issue.