An auxiliary scanner written in Go that checks if your API is vulnerable to OWASP Top 10 API vulnerabilities.
Install Binosearch by cloning the project.
git clone https://github.com/mamaoag/binosearch.git
cd binosearchYou can run Binosearch by running the following command:
go run main.goOr if you will provide your own wordlist,
go run main.go path/of/wordlistFollow the interactive commandline and it will run the scanner.
If you prefer to use the packages in this repository you would only need to use the following:
go get https://github.com/mamaoag/binosearch/services/scanner # Scanner for Wordlist
go get https://github.com/mamaoag/binosearch/services/owasp # Contains OWASP Checklist Contributions are always welcome!
-
Create first an issue describing what can be improved / bug.
-
If the issue is tagged as good first issue or help wanted, You may then create a pull request linking to the issue.