🛠️

Kaido Web Proxy Tool Overview

Aug 27, 2024

Kaido Web Proxy Tool Overview

Introduction

  • Kaido is a new web proxy tool, similar to Burp Suite.
  • Currently in beta phase.
  • Written in Rust (compared to Burp's Java).
  • Interface is aesthetically pleasing.

Installation

  • Requires login to use the Community Edition (unlike Burp Suite).
  • Installation command for Linux: sudo dpkg -i <package_name>.
  • Default local instance setup is on localhost:8080.
  • Must log in to browse; this is seen as a drawback.

Key Features

User Interface

  • Interface is visually appealing compared to Burp Suite.
  • Some lag experienced when switching tabs.
  • Layout customization is limited to editing mode without fine granularity.

Project Creation

  • Users must create a project to begin browsing.
  • Projects can be named appropriately based on tasks (e.g., bug hunting, CTFs).
  • Scope option allows easy switching between targets.

Proxy Functionality

  • Similar to Burp Suite in terms of basic functionality.
  • Allows for queuing requests instead of processing them one by one.
  • Users can modify and drop requests easily.
  • Lacks extensive right-click options on response data compared to Burp.

Automation Features

  • Automate tab available for brute force attacks and session management.
  • Ability to load payloads from text files (e.g., users.txt).
  • Limited options for payload processing and response matching compared to Burp.

Tamper Functionality

  • Allows for basic request modification (e.g., replacing headers).
  • Limited compared to Burp's extensive capabilities.

Other Features

  • History tab for tracking requests.
  • Files option for managing uploaded files.
  • Feedback section for user suggestions.
  • GraphQL playground for writing queries and mutations.

Advantages of Kaido

  • No rate limits on requests (at present).
  • Scope management for multiple targets is easy.
  • Aesthetically pleasing interface.

Disadvantages of Kaido

  • Requires login and project creation to use.
  • Limited functionality and options compared to Burp Suite.
  • Some performance issues noted during tab navigation.
  • Extensive capabilities missing as it's still in beta.

Conclusion

  • Initial impressions indicate Kaido has potential but lacks extensive features of Burp Suite.
  • Users are encouraged to provide feedback and suggestions for improvement.
  • Further exploration and comparison are needed as the tool develops.

Full transcript