Skip to content
/ plugin-labs Public

A set of labs for classes about extending interception proxy tools such as ZAP or Burp Suite.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SamuraiWTF/plugin-labs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
bin
bin
 
 
routes
routes
 
 
views
views
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
app.js
app.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Plugin Labs

Overview

The purpose of this project is to produce a series of web application scenarios for finding web application security flaws using an interception proxy (such as OWASP ZAP or BurpSuite). The scenarios are mostly corner cases where the standard interception proxy functionality is insufficient, and therefore requires a custom plugin or extension. These scenarios can also be solved with custom scripts that run outside of the interception proxy.

Running

The easiest way to use this lab is to run it in a Docker container. To do this, clone this repository then build and start the docker container. For example:

docker build -t plugin-lab . && docker run -p 127.0.0.1:8081:3000 plugin-lab

Then you should be able access the lab on port localhost:8081.

Requires Docker

About

A set of labs for classes about extending interception proxy tools such as ZAP or Burp Suite.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages