- Summary
- [Target Audience] To test your Juice Shop server
- Requirements
- [How To Run](#How To Run)
This is some small enhancements from the orginal code that Joe Butler posted on GitHub https://github.com/incognitjoe/juice-shop-solver A collection of Python functions for solving the various challenges in the OWASP Juice Shop, using Requests and for two challenges, Selenium 3.0. 100% complete for release 2.18, future versions may change the method and difficulty of any or all of the challenges.
Testers interested in security testing and automation primarily. Assumes some familiarity with security concepts and the Python programming language.
- OWASP Juice Shop running on http://localhost:3000
- Python 2.7.12
- Python dependencies in requirements.txt
- Chromedriver available on your system PATH
- Clone this repo
cdinto the directory you created locallypip install -r requirements.txt(Create a virtualenv first if you'd like)- Start the Juice Shop application
./solutions.py, then wait a minute
I'm a software tester looking to improve my security and automation knowledge, seemed like a fun way to kill two birds with one stone. I prefer working with APIs directly when I can, so for simplicity the only challenges that require Selenium are ones that must execute some Javascript(Python, naturally, does not have a Javascript engine included.)
The actual exploratory effort and techniques used to prepare this repository have been written up in my blog here.