fuzzapi: fuzz request attributes using common pentesting techniques and lists vulnerabilities – Penetration Testing

Fuzzapi is rails application which uses API_Fuzzer and provide UI solution for gem.

Setup

Install ruby in your machine either using rvm or rbenv

Clone the repository into your localmachine: git clone http://ift.tt/2vaQkGZ

cd /path/Fuzzapi/bin, move to Fuzzapi directory

bundle install to install the gem dependencies of the application

rake db:migrate to creates tables, migrations etc.

rails s to run the server and run export REDIS_URL=redis://127.0.0.1:6379/0 && bundle exec sidekiq to run sidekiq.

Open http://localhost:3000 in browser which should point to the application url

Fuzzapi comes with Docker to simplify installation processing. Following commands will setup application using Docker.

Clone the repository into your local machine: git clone http://ift.tt/2vaQkGZ

cd /path/Fuzzapi, move to Fuzzapi directory

Install Docker in your local machine

Run docker-compose build to build the image locally.

Run docker-compose up to run the server.

Open http://localhost:3000 in browser which should point to the application url

Fuzzapi uses API_Fuzzer gem.

Source: Github

The post fuzzapi: fuzz request attributes using common pentesting techniques and lists vulnerabilities appeared first on Penetration Testing.

Anúncios

Deixe um comentário

Preencha os seus dados abaixo ou clique em um ícone para log in:

Logotipo do WordPress.com

Você está comentando utilizando sua conta WordPress.com. Sair / Alterar )

Imagem do Twitter

Você está comentando utilizando sua conta Twitter. Sair / Alterar )

Foto do Facebook

Você está comentando utilizando sua conta Facebook. Sair / Alterar )

Foto do Google+

Você está comentando utilizando sua conta Google+. Sair / Alterar )

Conectando a %s