Pocket PiAP beta

Status

Dependencies:

Languages Size

Python Tools

Web UI

Pocket PiAP is still in private beta. FOSS under heavy development, No production support at this time. USE AT OWN RISK. See the CONTRIBUTING guide.

issues

License

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

Known Issues and Possible Improvements

For Details on current known issues:

see Issues

To suggest or help fund a bug bounty:

see Suggest a Bounty
funding is a work in porgress (donations welcome)

Reporting Issues and Bugs

Please open an Issue if one does not exist.

Reporting practical exploits and vulnerabilities

Be ethical, and be patient. Pocket PiAP IS STILL IN A PRIVATE BETA. If the security flaw is not fixed before the public beta more instructions are intended to be added here (at an indeterminate later time) to allow responsible discloser of such flaws.

due to lack of funding reporting rewards are not possible at this time. If you wish credit for finding a flaw, please include a note that you wish a byline with your disclosure.
security flaws may be reported to reactive.firewall+security@gmail.com

Ongoing hall of fame bug hunter list:

Anonymous Researcher - (April 2017)
- Reported first externally discovered bug.
- found several bugs involving CWE-20
Anonymous Researcher - (May 2017)
- Found timing analysis bug that allowed enumeration of valid users on login page.

Joining the Private Beta

Please send an email to reactive.firewall+jointhebeta@gmail.com and request to join the private Beta.

OR ...

Offer to help

What you can expect:

Currently instructions to assemble a prototype system to run Pocket AP are constantly changing and thus are still a TO-DO item.
parts vary in cost depending on how you order them.
cost of parts is usually around $118 (USD) (for the basic prototype)

reactive-firewall / Pocket-PiAP

readme