~/trending
~$CLAUDECO3.0%~$DOCLING0.8%~$CRUSH2.2%~$CONTEXT70.7%~$N8N0.4%~$GEMINICL0.4%~$TAILWIND0.4%~$GOOGLETE0.4%~$GOOSE0.5%~$VLLM0.3%~$CLAUDECO3.0%~$DOCLING0.8%~$CRUSH2.2%~$CONTEXT70.7%~$N8N0.4%~$GEMINICL0.4%~$TAILWIND0.4%~$GOOGLETE0.4%~$GOOSE0.5%~$VLLM0.3%
live
Navigate:
All Reposhttpx
~$HTTPX0.1%

httpx: HTTP toolkit for multiple probes

Fast HTTP probing with response metadata extraction.

LIVE RANKINGS • 06:52 AM • STEADY
OVERALL
#180
24
SECURITY
#16
2
30 DAY RANKING TREND
ovr#180
·Secur#16
STARS
14.9K
FORKS
1.0K
DOWNLOADS
31.4K
7D STARS
+10
7D FORKS
+3
Tags:
Security
See Repo:
Share:

Learn more about httpx

httpx is a Go-based HTTP toolkit designed to perform reconnaissance and probing tasks against web targets at scale. It uses the retryablehttp library to handle network reliability, implementing retry logic and backoff strategies to work around rate limiting and WAF protections. The tool supports diverse input formats including individual hosts, URL lists, and CIDR ranges, and can extract over 30 different HTTP-based data points from responses. It is commonly used in security research, bug bounty workflows, and network reconnaissance pipelines.

httpx
1

Configurable probe selection

httpx offers a wide range of optional probes including TLS certificates, CSP headers, favicon hashing, JARM fingerprinting, and redirect chain analysis. Users can enable or disable specific probes based on their reconnaissance needs.

2

Retry and fallback handling

The tool implements automatic fallback from HTTPS to HTTP, retry logic with backoff strategies, and WAF evasion techniques to maintain reliability when probing multiple targets concurrently.

3

Flexible input and output

httpx accepts hosts, URLs, CIDR ranges, and raw HTTP requests as input, making it suitable for integration into larger security scanning pipelines and reconnaissance workflows.

import httpx

response = httpx.get('https://api.example.com/data')
print(response.json())
vv1.7.1

Patch release fixing output formatting bugs in location display, CSV/JSON timestamps, and HTML title parsing for non-Latin character sets.

  • Update if you rely on CSV/JSON timestamp consistency or parse HTML titles, especially from Traditional Chinese pages.
  • No breaking changes or new requirements; location field now prints only when explicitly requested via CLI option.
vv1.7.0

Adds screenshot control flag and fixes minor bugs; no breaking changes or new requirements.

  • Use `-no-screenshot-full-page` to capture viewport-only screenshots instead of full-page renders.
  • Fixes internal fake data generator crash when encountering empty interfaces during fuzzing operations.
vv1.6.10

Bug-fix release restoring -probe JSON/CSV output, screenshot capture, and filter-condition CSV extraction; fastdialer v0.3.0 resolves CPU bottleneck.

  • Upgrade fastdialer to v0.3.0 to eliminate CPU bottleneck during high-throughput scans.
  • Verify ScreenshotIdle config now applies correctly; previously defaulted to 0 and blocked all screenshots.

Top in Security

1

ghidra

63,385
2

gitleaks

24,527
3

OSINT-Framework

10,468
4

spiderfoot

16,324
5

fail2ban

16,548
See all →

Trending Repos

1

claude-code

55,707#1
2

docling

49,545#2
3

crush

17,257#3
4

context7

41,389#4
5

n8n

167,709#5
See all →
[ EXPLORE MORE ]

Related Repositories

Discover similar tools and frameworks used by developers

spiderfoot

Python reconnaissance framework with 200+ OSINT modules.

16,3242,754

DVWA

PHP/MariaDB training platform for web security exploitation practice.

12,4374,504

OSINT-Framework

Structured web catalog of free OSINT tools.

10,4681,703

grype

Detect vulnerabilities in container images and filesystems.

11,330724

CyberChef

Browser-based data transformation tool with chainable operations.

33,6853,812