search

flipkart-incubator / Astra

Automated Security Testing For REST API's
Apache License 2.0
2.49k stars 396 forks source link

getting exception #85

Closed ilayathalapathy-3719 closed 5 years ago

ilayathalapathy-3719 commented 5 years ago

astra error Getting exception error while running astra.py file and api py error

Getting exception error while running API/api.py file.

Final scan result is blank

sagarpo commented 5 years ago

@avi3719 Can you try to scan the same from web UI?

balzer82 commented 5 years ago

Same from WebUI:

docker run --rm -it --link astra-mongo:mongo -p 8094:8094 astra
 * Serving Flask app "api" (lazy loading)
 * Environment: production
   WARNING: Do not use the development server in a production environment.
   Use a production WSGI server instead.
 * Debug mode: off
/usr/local/lib/python2.7/site-packages/pymongo/topology.py:149: UserWarning: MongoClient opened before fork. Create MongoClient only after forking. See PyMongo's documentation for details: http://api.mongodb.org/python/current/faq.html#is-pymongo-fork-safe
  "MongoClient opened before fork. Create MongoClient only "
exception in XSS
exception in Open redirect
exception in XXE
exception in CRLF
exception in security_headers
balzer82 commented 5 years ago

I made it with a Mongo in Docker and the python astra.py and now it works. Wrote it down here.

sagarpo commented 5 years ago

@avi3719 Did you start mongo server? You need to run mongo server first as mentioned in README.

sagarpo commented 5 years ago

@balzer82 Thanks.