Home

Awesome

What is Tiredful API?

Tiredful API is intentionally designed broken app. The aim of this web app is to teach developers, QA or security professionals about flaws present in webservices (REST API) due to insecure coding practice.

Tiredful API image

Who can use Tiredful API?

What is included in Tiredful API?

I tried to cover most of the vulnerabilities, I am sure that we have missed some vulnerabilities.Please ping me if you know any good vulnerability that should be included. For now I have included following vulnerabilities.

Can I contribute?

Yes, you can help by sending us the details of vulnerabilities that we can implement in future versions of Tiredful API. Please mail us at siddharth [dot] bezalwar [at] gmail [dot] com with subject "Tiredful API Scenario".

Where can I get Tiredful API?

Source can be downloaded from link.

How to run Tiredful API?

Tiredful API is developed using Django Framework and Django Rest Framework, so for running the web server user needs execute following command.

Note: It is recommended to use required libraries with the version specified in the requirements.txt. Please refer this more details

Docker Container

You can run Tiredful via Docker. Simply execute:

docker build -t tiredful .
docker run -p 8000:8000 --name tiredful -it tiredful

Browse to http://localhost:8000/ and you are all set. Use CTRL-C to shut down the server.

Python3 Compatible Code

Tiredful API Python3

Feedback and Bug Reports.

We would love to hear from you about your experience with Tiredful API. Please send us an email on siddharth [dot] bezalwar [at] gmail [dot] com with Subject "Tiredful API Issue" based on what you want to share. Please include the below in your email.

Author

Siddharth Bezalwar

@fattu_medjai | siddharth [dot] bezalwar [at] gmail [dot] com