lijiejie / swagger-exp Goto Github PK

View Code? Open in Web Editor NEW

1.1K 1.1K 122.0 638 KB

A Swagger API Exploit

HTML 1.24% Python 0.36% JavaScript 91.87% CSS 6.53%

swagger-exp's Introduction

swagger-exp's People

Contributors

Stargazers

Watchers

Forkers

ethancck zcsmile laowang1026 yuyuowo 0x3x0xa popmedd gitttttbottttt xizhimen 1amfine2333 laozhudetui whizsail polarpeak sslvtao lnm3000 lp008 mad-robot yijinglab hotwordland 7hang test2504 jeromeyoung afwu sry309 ykankaya hack404-007 chrisdcla 957204459 wang0098 g0dark inuyasha-fay nszy007 rassec hecg119 gkfnf rurbin3 9tail123 shimxx yougar0 ludashuai001 davcloudz emadshanab sairson reckfu 3as0n xiju2003 transferhhh huangzccn 5l1v3r1 fdlucifer topsec-bunney t43wiu6 scopion gysf666 conanjun cleanmgr112 m3g4byt3 lztred rapper-zc startagain2016 bawed lay0us1 nanaao stemmm wangyi0127 sec-fork hstz anfutest raspberryhusky zor01478 listenquiet diannaofengzi git-stateless pangzishouzi a627414850 fostane auxiliarya waydmy app999 12121212232323232323 cyberindia1 5hm11y linuxprogramdevelop toor123himmel66 yx2124538 asura88 v1rtu0l ms-f001 fj2m3iko codechina888 nyx2022 t1gress j0k4r5 beike2020 weijifen12 lanyi1998 qqcf youan-dev iceberg404 lanvnal lvseer0

swagger-exp's Issues

ModuleNotFoundError: No module named 'urlparse'

Traceback (most recent call last):
File "/root/mytools/swagger-exp/./swagger-exp.py", line 10, in
import urlparse
ModuleNotFoundError: No module named 'urlparse'

大佬可以看看吗为什么有这样的错误，小弟求请教

就是前面运行的不错，中途出现的这样的情况
Traceback (most recent call last): File "C:\Users\Lenov\Downloads\swagger-exp-master\swagger-exp-master\swagger-exp.py", line 109, in process_doc scan_api(method, base_url, path, params_str) File "C:\Users\Lenov\Downloads\swagger-exp-master\swagger-exp-master\swagger-exp.py", line 130, in scan_api r = requests.post(api_url, data=_params_str, headers=headers, verify=False) File "D:\py\lib\site-packages\requests\api.py", line 115, in post return request("post", url, data=data, json=json, **kwargs) File "D:\py\lib\site-packages\requests\api.py", line 59, in request return session.request(method=method, url=url, **kwargs) File "D:\py\lib\site-packages\requests\sessions.py", line 589, in request resp = self.send(prep, **send_kwargs) File "D:\py\lib\site-packages\requests\sessions.py", line 703, in send r = adapter.send(request, **kwargs) File "D:\py\lib\site-packages\requests\adapters.py", line 486, in send resp = conn.urlopen( File "D:\py\lib\site-packages\urllib3\connectionpool.py", line 699, in urlopen httplib_response = self._make_request( File "D:\py\lib\site-packages\urllib3\connectionpool.py", line 394, in _make_request conn.request(method, url, **httplib_request_kw) File "D:\py\lib\site-packages\urllib3\connection.py", line 234, in request super(HTTPConnection, self).request(method, url, body=body, headers=headers) File "D:\py\lib\http\client.py", line 1282, in request self._send_request(method, url, body, headers, encode_chunked) File "D:\py\lib\http\client.py", line 1327, in _send_request body = _encode(body, 'body') File "D:\py\lib\http\client.py", line 166, in _encode raise UnicodeEncodeError( UnicodeEncodeError: 'latin-1' codec can't encode characters in position 13-22: Body ('云集提交人脸认证结果') is not valid Latin-1. Use body.encode('utf-8') if you want to send it encoded in UTF-8.

swagger v3支持

现在只能支持v2的swagger v3的不兼容可以兼容swaggerv3吗

并禁用CROS

并禁用CORS，哈哈姐姐打错字了

无法识别其他类型的swagger

url后面是doc.html但是这样就好像无法解析了

师傅能添加一下对mac的支持吗，我看那个获取chrome路径的时候获取的只有Linux和Windows的

师伯支持识别https的网站吗

识别不了FastAPI 0.1.0 OAS3 /openapi.json

识别不了直接打开了谷歌浏览器
FastAPI

0.1.0

OAS3

/openapi.json

不支持接口里面有中文吗？

$ python swagger-exp.py http://10.139.14.14:8086/v2/api-docs
[10:18:24] [OK] [API set] http://10.139.14.14:8086/v2/api-docs
[10:18:24] [POST] http://10.139.14.14:8086/user/add userVo={OBJECT_UserVo}
[10:18:24] [Request] POST http://10.139.14.14:8086/user/add
userVo={OBJECT_UserVo}
[10:18:24] [Response] Code: 415 Content-Type: application/json Content-Length: 105
[10:18:24] [POST] http://10.139.14.14:8086/area/saveArea areaVo={OBJECT_区域实体}
Traceback (most recent call last):
File "swagger-exp.py", line 108, in process_doc
scan_api(method, base_url, path, params_str)
File "swagger-exp.py", line 129, in scan_api
r = requests.post(api_url, data=_params_str, headers=headers, verify=False)
File "X:\Python27\lib\site-packages\requests\api.py", line 116, in post
return request('post', url, data=data, json=json, **kwargs)
File "X:\Python27\lib\site-packages\requests\api.py", line 60, in request
return session.request(method=method, url=url, **kwargs)
File "X:\Python27\lib\site-packages\requests\sessions.py", line 533, in request
resp = self.send(prep, **send_kwargs)
File "X:\Python27\lib\site-packages\requests\sessions.py", line 646, in send
r = adapter.send(request, **kwargs)
File "X:\Python27\lib\site-packages\requests\adapters.py", line 449, in send
timeout=timeout
File "X:\Python27\lib\site-packages\urllib3\connectionpool.py", line 600, in urlopen
chunked=chunked)
File "X:\Python27\lib\site-packages\urllib3\connectionpool.py", line 354, in _make_request
conn.request(method, url, **httplib_request_kw)
File "X:\Python27\lib\httplib.py", line 1042, in request
self._send_request(method, url, body, headers)
File "X:\Python27\lib\httplib.py", line 1082, in _send_request
self.endheaders(body)
File "X:\Python27\lib\httplib.py", line 1038, in endheaders
self._send_output(message_body)
File "X:\Python27\lib\httplib.py", line 886, in _send_output
self.send(message_body)
File "X:\Python27\lib\httplib.py", line 858, in send
self.sock.sendall(data)
File "X:\Python27\lib\socket.py", line 228, in meth
return getattr(self._sock,name)(*args)
UnicodeEncodeError: 'ascii' codec can't encode characters in position 15-18: ordinal not in range(128)
[10:18:24] [process_doc error][http://10.139.14.14:8086/v2/api-docs] 'ascii' codec can't encode characters in position 15-18: ordinal not in range(128)
[10:18:24] Swagger UI Server on: http://127.0.0.1:2587
[10:18:24] Open Swagger UI with chrome
1[10:18:27] Server shutdown.27.0.0.1 - - [22/Oct/2021 10:18:27] "GET /api_summary.txt HTTP/1.1" 200 -