swagger-exp icon indicating copy to clipboard operation
swagger-exp copied to clipboard

Published 20 hours ago verified publisher icon lijiejie

Metadata

A Swagger API Exploit

Results 13 swagger-exp issues
Sort by recently updated
recently updated
newest added

how is it used?

I can't understand how to use it, is there a missing file? Can you make a small tutorial on how to use it?

claudiowwe avatar claudiowwe

errors when json file not found

1 comment

seems useless ![image](https://user-images.githubusercontent.com/75239015/114809011-edec0a00-9ddb-11eb-8f04-4cd92cdd21a8.png) ![image](https://user-images.githubusercontent.com/75239015/114808862-b0877c80-9ddb-11eb-9b7f-947dfdc32a0e.png)

githubliquid avatar githubliquid

使用场景建议

有的目标是内网的时候 但是外网的域名依然是可以拼接接口访问,目前工具的状态是 直接 通过接口的域名或者内网发出请求,好像都是403 404 比如场景 127.0.0.1/123/api/ 但是工具批量与接口发出请求的时候 是直接去跟127.0.0.1 发出请求.而不是 127.0.0.1/123/api/ (但是接口确实是 127.0.0.1/123/api),可以实现自定义 发出请求的 域名吗? 比如 正常是 swagger-exp.py https://127.0.0.1/v3/api-docs 运行后 可以提升个输入 自定义 请求域或加上目录的,如127.0.0.1/123/ api 就直接对的上

soshunte avatar soshunte

Metadata

646
Stars
91
Forks
Watchers

Owner

verified publisher icon lijiejie

Metadata

A Swagger API Exploit

Back