rqwstr
@Kjopstad-IT
AI-native HTTP security testing toolkit (MCP server): 17 HTTP tools giving an AI agent low-level control over HTTP/1.1 and HTTP/2 (raw framing, connection pinning, intruder, race, OOB, chains) on its own Go engine. Free tier; docs at rqwstr.com.
概要
What is rqwstr?
rqwstr is an AI-native HTTP security testing toolkit shipped as an MCP server. It gives an AI agent low‑level control over HTTP/1.1 and HTTP/2 raw framing, connection pinning, intruder‑style fuzzing, request racing, OOB detection, and multi‑step chains, running on its own Go engine. It is intended for security testing use cases.
How to use rqwstr?
Download the .mcpb file for your platform from the latest release and double‑click it to add rqwstr as a Claude Desktop extension. No further configuration is described.
Key features of rqwstr
- Low‑level control over HTTP/1.1 and HTTP/2 raw framing
- Connection pinning for persistent TCP/TLS sessions
- Intruder‑style fuzzing of requests
- Request racing (concurrent request testing)
- OOB (out‑of‑band) detection
- Multi‑step attack chains
Use cases of rqwstr
- Automating web application security tests with an AI agent
- Fuzzing HTTP endpoints for vulnerabilities
- Testing race conditions via request racing
- Detecting out‑of‑band interactions
- Building complex multi‑step attack workflows
FAQ from rqwstr
What is rqwstr and how does it differ from a standard HTTP client?
rqwstr is not a high‑level HTTP client; it gives raw control over HTTP framing and includes security‑testing features like fuzzing, racing, and OOB detection, running on its own Go engine.
Is rqwstr open source?
No. The source code is proprietary.
What platforms are supported for installation?
macOS (Apple silicon and Intel), Linux (amd64 and arm64), and Windows.
How do I install rqwstr?
Download the .mcpb bundle for your platform from the latest release and double‑click it to add rqwstr as a Claude Desktop extension.
Where can I find documentation and sign up?
Documentation and sign‑up are available at rqwstr.com.