post-json-fuzzer

Python script for fuzzing 2 parameters simultaneously in a JSON POST request. Similar to Burp Intruder Pitchfork attack type without the Community Edition limitations.

Proxy Setup

Proxying can be done using environment variables.

Powershell

$env:REQUESTS_CA_BUNDLE="Z:\PATH\TO\burpCert.pem"
$env:HTTP_PROXY="http://127.0.0.1:8080"
$env:HTTPS_PROXY="http://127.0.0.1:8080"

Bash

export REQUESTS_CA_BUNDLE="/PATH/TO/burpCert.pem"
export HTTP_PROXY="http://127.0.0.1:8080"
export HTTPS_PROXY="http://127.0.0.1:8080"

Testing

Use a self-hosted vulnerable API such as https://github.com/roottusk/vapi

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
post-json-fuzzer.py		post-json-fuzzer.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

post-json-fuzzer

Proxy Setup

Powershell

Bash

Testing

About

Releases

Packages

Languages

License

clintmint/post-json-fuzzer

Folders and files

Latest commit

History

Repository files navigation

post-json-fuzzer

Proxy Setup

Powershell

Bash

Testing

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages