A gRPC API vulnerable app

For testing hawkscan GRPC and protobuf capabilities.

Development

This is a gradle base project, use ./gradlew tasks command to see all available options.

Lint check code

./gradlew ktlintCheck

Format code

./gradlew ktlintFormat

Build jar

./gradlew bootJar

Run the jar you just built 👆

java -jar build/libs/vuln-grpc-kotlin.jar

Spring run

./gradlew bootRun

Building and Running in Docker

Build

docker-compose build

Run docker

docker-compose up -d

Using the Application

Reaching the App

Once the app starts up, you can reach it at https://localhost:9001.

A good tool for gRPC testing locally is https://kreya.app/

PS: You'll need Postgres for local development.

Testing

See GrpcProxyClientTest.kt for an example of proxying gRPC traffic through hawkscan/ZAP.

Name		Name	Last commit message	Last commit date
Latest commit History 25 Commits
db		db
gradle/wrapper		gradle/wrapper
protos/hawk		protos/hawk
src		src
.gitattributes		.gitattributes
.gitignore		.gitignore
Dockerfile		Dockerfile
README.md		README.md
build.gradle.kts		build.gradle.kts
docker-compose.yml		docker-compose.yml
gradle.properties		gradle.properties
gradlew		gradlew
gradlew.bat		gradlew.bat
settings.gradle.kts		settings.gradle.kts

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

A gRPC API vulnerable app

Development

Lint check code

Format code

Build jar

Spring run

Building and Running in Docker

Build

Run docker

Using the Application

Reaching the App

Testing

About

Releases

Packages

Contributors 3

Languages

kaakaww/vuln-grpc-kotlin

Folders and files

Latest commit

History

Repository files navigation

A gRPC API vulnerable app

Development

Lint check code

Format code

Build jar

Spring run

Building and Running in Docker

Build

Run docker

Using the Application

Reaching the App

Testing

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 3

Languages

Packages