Hey! Just writing to let you know that I've added HAR input support to mitmproxy2swagger.
@alufers
From 6/9/2018, 2:24:29 PM till now, @alufers has achieved 999 Karma Points with the contribution count of 117.
Recent @alufers Activity
Hey! Just writing to let you know that I've added HAR input support to mitmproxy2swagger.
Hey! Just writing to let you know that I've added HAR input support to mitmproxy2swagger.
The problem with pcap is that whe requests there would be encrypted and basically there is no way to practically decrypt them.
Mitmproxy solves that by being between the client and server and injecting it's own self-signed certificate (which you need to add to the trusted certificates on the phone, which requires root).
I didn't, just added a self-signed cert to my keychain on macOS and launched the app as downloaded from App Store.
I guess Airbnb doesn't use cert pinning.
Doesn't wsdl just expose the schema on the server?
I thought about it, but it would be hard to distinguish between an enumerator and just static data. For example if you logged in with only one account it could classify the "username" field as an enumeration, because there is only one captured value.
Totally, but you would need to do some manual cleanup and naming afterwards to make it more useful than just reading the source code. You could also for example use your integration tests if you have some to capture as much routes as possible.
Yes, this is basically what this program does.
At this point yes, but I am working on adding this.
It does, but it will only generate schema descriptions for JSON endpoints. Whis means that the URL and method will appear in the spec, but not the response/request schema.
Wanted to show off my little project which helps whith reverse engneering APIs used by various apps. It takes HTTP traffic capturewd by mitmproxy and generates an OpenAPI specification for a given REST API.
I have used it already on two apps and the results are good enough to write an alternative client or quickly automate some stuff.
Show HN: Mitmproxy2swagger – Automagically reverse-engineer REST APIs
690 points • 83 comments
I think the biggest advantage would be that you wouldn't show up so much on thermovison cameras, since ICEs create so much excess heat.
I have two Totolink X5000R and they work great with OpenWRT, using iperf3 I can get about 500Mbps of real throughput to my Samsung Galaxy S20 Plus 5G. I bought them mainly with the intent of using them with the Oculus Quest for AirLink and WiFi performance is never a problem for me.
Two weird caveats I had to overcome: 1. I had to compile OpenWRT from master myself so that I could configure the WiFi 6 interface using Luci (the web ui), because the latest stable release does not include that functionality. 2. I bought two of them for two floors and OpenWRT somehow managed to generate the same BSSID for both of those routers, which caused both of the networks to be inoperable. To fix this I had to edit a bash script which generates the BSSID in OpenWRT and change it to something else.
Newer TP-Links use broadcom chips which have no drivers on Linux, so it makes using openwrt basically impossible.
That's why you never attach the chain to the wheel, but to the triangle made from the frame.
So it's a faraday cage?
Imagine that a virus is detected in your body and then you get sued by a patent troll for having unlicensed genetic sequences in your body.
Oh I remember this tutorial, because I followed it once to get telnet to this exact device. I even bought a special transcend sd card reader that was said to support 1-bit mode, but what worked for me in the end was the cheapest and crappiest looking adapter I had.
The funny thing is that you can use this method to illegaly increase your internet speed, since it is limited by the modem, not by the ISP's equipment.
site design / logo © 2022 Box Piper