├── .gitignore ├── CONTRIBUTORS.md ├── COPYING ├── README.md ├── doc ├── README.md ├── formats │ ├── auth.md │ ├── info.md │ ├── meta.md │ ├── report.md │ └── run.md ├── guides │ ├── advanced_usage.md │ ├── basic_usage.md │ ├── images │ │ ├── auth_backend.svg │ │ ├── auth_gen.svg │ │ ├── engine.svg │ │ ├── request_info.svg │ │ ├── test_case_interface.svg │ │ └── token_generator.svg │ └── report.md ├── test_cases.md └── troubleshooting.md ├── requirements.txt └── rest_attacker ├── .gitignore ├── __init__.py ├── __main__.py ├── cfg ├── .gitignore └── readme.txt ├── checks ├── __init__.py ├── body.py ├── generic.py ├── headers.py ├── https.py ├── misc.py ├── resources.py ├── scopes.py ├── token.py ├── types.py └── undocumented.py ├── engine ├── __init__.py ├── config.py ├── engine.py ├── generate_checks.py └── internal_state.py ├── report ├── __init__.py └── report.py └── util ├── __init__.py ├── auth ├── __init__.py ├── auth_generator.py ├── auth_scheme.py ├── server.py ├── server_payload.html ├── session.py ├── token_generator.py └── userinfo.py ├── enum_test_cases.py ├── errors.py ├── input_gen.py ├── log.py ├── openapi ├── __init__.py └── wrapper.py ├── parsers ├── __init__.py ├── config_auth.py ├── config_info.py ├── config_run.py └── openapi.py ├── request ├── __init__.py ├── http_methods.py └── request_info.py ├── response_handler.py ├── test_result.py └── version.py /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/.gitignore -------------------------------------------------------------------------------- /CONTRIBUTORS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/CONTRIBUTORS.md -------------------------------------------------------------------------------- /COPYING: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/COPYING -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/README.md -------------------------------------------------------------------------------- /doc/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/README.md -------------------------------------------------------------------------------- /doc/formats/auth.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/formats/auth.md -------------------------------------------------------------------------------- /doc/formats/info.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/formats/info.md -------------------------------------------------------------------------------- /doc/formats/meta.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/formats/meta.md -------------------------------------------------------------------------------- /doc/formats/report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/formats/report.md -------------------------------------------------------------------------------- /doc/formats/run.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/formats/run.md -------------------------------------------------------------------------------- /doc/guides/advanced_usage.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/advanced_usage.md -------------------------------------------------------------------------------- /doc/guides/basic_usage.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/basic_usage.md -------------------------------------------------------------------------------- /doc/guides/images/auth_backend.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/images/auth_backend.svg -------------------------------------------------------------------------------- /doc/guides/images/auth_gen.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/images/auth_gen.svg -------------------------------------------------------------------------------- /doc/guides/images/engine.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/images/engine.svg -------------------------------------------------------------------------------- /doc/guides/images/request_info.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/images/request_info.svg -------------------------------------------------------------------------------- /doc/guides/images/test_case_interface.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/images/test_case_interface.svg -------------------------------------------------------------------------------- /doc/guides/images/token_generator.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/images/token_generator.svg -------------------------------------------------------------------------------- /doc/guides/report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/guides/report.md -------------------------------------------------------------------------------- /doc/test_cases.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/test_cases.md -------------------------------------------------------------------------------- /doc/troubleshooting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/doc/troubleshooting.md -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/requirements.txt -------------------------------------------------------------------------------- /rest_attacker/.gitignore: -------------------------------------------------------------------------------- 1 | # Output files 2 | /out/ 3 | -------------------------------------------------------------------------------- /rest_attacker/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/__init__.py -------------------------------------------------------------------------------- /rest_attacker/__main__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/__main__.py -------------------------------------------------------------------------------- /rest_attacker/cfg/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/cfg/.gitignore -------------------------------------------------------------------------------- /rest_attacker/cfg/readme.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/cfg/readme.txt -------------------------------------------------------------------------------- /rest_attacker/checks/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/__init__.py -------------------------------------------------------------------------------- /rest_attacker/checks/body.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/body.py -------------------------------------------------------------------------------- /rest_attacker/checks/generic.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/generic.py -------------------------------------------------------------------------------- /rest_attacker/checks/headers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/headers.py -------------------------------------------------------------------------------- /rest_attacker/checks/https.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/https.py -------------------------------------------------------------------------------- /rest_attacker/checks/misc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/misc.py -------------------------------------------------------------------------------- /rest_attacker/checks/resources.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/resources.py -------------------------------------------------------------------------------- /rest_attacker/checks/scopes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/scopes.py -------------------------------------------------------------------------------- /rest_attacker/checks/token.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/token.py -------------------------------------------------------------------------------- /rest_attacker/checks/types.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/types.py -------------------------------------------------------------------------------- /rest_attacker/checks/undocumented.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/checks/undocumented.py -------------------------------------------------------------------------------- /rest_attacker/engine/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/engine/__init__.py -------------------------------------------------------------------------------- /rest_attacker/engine/config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/engine/config.py -------------------------------------------------------------------------------- /rest_attacker/engine/engine.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/engine/engine.py -------------------------------------------------------------------------------- /rest_attacker/engine/generate_checks.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/engine/generate_checks.py -------------------------------------------------------------------------------- /rest_attacker/engine/internal_state.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/engine/internal_state.py -------------------------------------------------------------------------------- /rest_attacker/report/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/report/__init__.py -------------------------------------------------------------------------------- /rest_attacker/report/report.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/report/report.py -------------------------------------------------------------------------------- /rest_attacker/util/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/__init__.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/__init__.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/auth_generator.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/auth_generator.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/auth_scheme.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/auth_scheme.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/server.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/server.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/server_payload.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/server_payload.html -------------------------------------------------------------------------------- /rest_attacker/util/auth/session.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/session.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/token_generator.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/token_generator.py -------------------------------------------------------------------------------- /rest_attacker/util/auth/userinfo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/auth/userinfo.py -------------------------------------------------------------------------------- /rest_attacker/util/enum_test_cases.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/enum_test_cases.py -------------------------------------------------------------------------------- /rest_attacker/util/errors.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/errors.py -------------------------------------------------------------------------------- /rest_attacker/util/input_gen.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/input_gen.py -------------------------------------------------------------------------------- /rest_attacker/util/log.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/log.py -------------------------------------------------------------------------------- /rest_attacker/util/openapi/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/openapi/__init__.py -------------------------------------------------------------------------------- /rest_attacker/util/openapi/wrapper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/openapi/wrapper.py -------------------------------------------------------------------------------- /rest_attacker/util/parsers/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/parsers/__init__.py -------------------------------------------------------------------------------- /rest_attacker/util/parsers/config_auth.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/parsers/config_auth.py -------------------------------------------------------------------------------- /rest_attacker/util/parsers/config_info.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/parsers/config_info.py -------------------------------------------------------------------------------- /rest_attacker/util/parsers/config_run.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/parsers/config_run.py -------------------------------------------------------------------------------- /rest_attacker/util/parsers/openapi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/parsers/openapi.py -------------------------------------------------------------------------------- /rest_attacker/util/request/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/request/__init__.py -------------------------------------------------------------------------------- /rest_attacker/util/request/http_methods.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/request/http_methods.py -------------------------------------------------------------------------------- /rest_attacker/util/request/request_info.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/request/request_info.py -------------------------------------------------------------------------------- /rest_attacker/util/response_handler.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/response_handler.py -------------------------------------------------------------------------------- /rest_attacker/util/test_result.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/test_result.py -------------------------------------------------------------------------------- /rest_attacker/util/version.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/RUB-NDS/REST-Attacker/HEAD/rest_attacker/util/version.py --------------------------------------------------------------------------------