Manual Reference Pages - SPYBYE (1)
- a proxy to help finding malware
[-g good patterns]
[-b bad patterns]
[-l log file]
[-S shareing url]
tool provide a proxy server through which web pages can be fetched and
analyzed for potentially dangerous includes.
you need to configure your web browser to use the port configured by
as proxy port.
The options are as follows:
|-b good patterns
A file or URL from which good patterns can be loaded.
Any URL that maches a good pattern is declared harmless.
|-b bad patterns
A file or URL from which bad patterns can be loaded.
Any URL that matches a bad pattern is declared dangerous.
The port number under which
creates the proxy server.
This is the port the web browser needs to contect to.
|-l log file
A filename to which potentially dangerous site interactions are being
|-S share url
finds a dangerous URL, it can be reported to the provided URL.
By default, this points to
This option can be disabled by providing an empty string.
does not allow any fetches to private IP addresses.
By specifying this option, web pages can be fetched from any IP address.
into proxy mode.
Its possible to browse the web normally, but
is going to disallow fetches it deems dangerous.
This tool is not very complicated and very straight forward.
then traces all fetches the web browser makes.
All URLs that have been classifies as dangerous are displayed in the
overview page but the web broswer is denied access to them.
For additional security, the referer header needs to match the already
discovered URL space.
could potentially get your computer infected when visiting a dangerous
So, ideally, your web browser should run within a virtual machine.
utility has been developed by Niels Provos.
Visit the GSP FreeBSD Man Page Interface.
Output converted with manServer 1.07.