https://github.com/junxian428/bola_excessive_data_exposure-crapi_learning

BOLA_Excessive_Data_Exposure_API_Pentest (Based on crAPI, my learning)
https://github.com/junxian428/bola_excessive_data_exposure-crapi_learning

api-hacking crapi

Last synced: 5 months ago
JSON representation

BOLA_Excessive_Data_Exposure_API_Pentest (Based on crAPI, my learning)

• Host: GitHub
• URL: https://github.com/junxian428/bola_excessive_data_exposure-crapi_learning
• Owner: junxian428
• Created: 2022-09-24T03:12:07.000Z (over 3 years ago)
• Default Branch: main
• Last Pushed: 2022-09-24T03:16:32.000Z (over 3 years ago)
• Last Synced: 2025-01-21T15:50:35.632Z (over 1 year ago)
• Topics: api-hacking, crapi
• Homepage:
• Size: 1000 Bytes
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# BOLA_Excessive_Data_Exposure-crAPI_Learning

My Learning

Registeration API

![image](https://user-images.githubusercontent.com/58724748/192077738-bc371db6-6648-4637-972b-c1bb304b64f5.png)

GET METHOD 

http://192.168.33.20/identity/api/v2/vehicle/vehicles

POST METHOD

{

    "name":"Cincai",

    "price":-999,

    "image_url":"https://avatars.githubusercontent.com/u/58724748?v=4",

    "credit":-3000.0

}

Example :

Since the credit is negative, once we add into cart the credit will be increased 

Minus Negative

![image](https://user-images.githubusercontent.com/58724748/192077671-da371e4e-bee4-41d9-9d44-c20234870c1a.png)

Above is my current progress 

Online Video Got How to bruteforce OTP