Releases: OWASP/OFFAT
Releases · OWASP/OFFAT
v0.20.0-beta
Changelog
- 0e04052 use content instead of filename for detecting content type
- af7f765 update workflows and integrate goreleaser
- 97f0d58 update workflows
- 85aa083 update workflows
- e5086ef update workflow
- b69c8fb update version flag
- 0d060fa update makefile
- ff2f252 update goreleaser config
- 15b1230 update goreleaser config
- 178f68e update gitignore
- 9a695a7 update dockerfile and handle default terminal size
- 73f09e5 update README
- c090990 tests enhancements
- 5b906a2 setup test automation
- cda96f2 run basic api test
- eb09f0b remove main binary
- 3c92ddd refactor code
- 08002ba refactor code
- af7fa80 refactor code
- 781c5d7 makefile fix for cicd
- 25e68ef implement unrestricted http method test
- 22ee249 implement proxy option
- 33ccc0e implement parser
- 838f340 implement fuzzer
- 0f5100b implement basic ssrf tests
- 6d110c1 implement basic sqli tester
- cb5cd66 handle url and filename for fetching and parsing doc
- 42bfa10 handle response param
- d700b6b handle regex based payloads
- c58e5b1 handle random type values injection
- 5331d25 handle output
- f7dd43c handle issue #131
- cd3cdbc handle http params
- f42d384 handle false positives in ssrf
- 6545cf6 generate and print table
- 395f500 fix cic
- 08a40ad docker related updates
- 1d6ddc6 create post test runner pkg
- 335deed create http module
- 0d7caa0 create basic parser
- fb8b3eb chore: move package report to pkg
- 0872111 bump deps and implement bola test
- 4966fac body data fixes
- 980188f add xss/html and ssti injection tests
- 4f2d7a1 add version flag
- 87ea854 add tests
- ee9df07 add support for arm v6 and v7 images
- 55f77f7 add query param for tracking vulnerable endpoint
- ae579e7 add new flag
- 29a490b add new features and improvements
- 2a0e6b8 add flag to skip TLS/SSL verification
- 35e9a6a add bola trailing path test
- 4f209f2 add -pr flag path regex filtering
- 0eb72fb Merge pull request #137 from OWASP/integrate-goreleaser
- 0be2e08 Merge pull request #136 from OWASP/add-path-regex-flag
- 9d2ad97 Merge pull request #135 from OWASP/bola-trailing-path-test
- 42ac344 Merge pull request #134 from OWASP/bola
- 49eed48 Merge pull request #133 from OWASP/regex-based-payloads
- 04ea305 Merge pull request #121 from OWASP/dependabot/pip/src/pip-a8b23622d7
- 4d80dfa Merge branch 'migrate-to-golang' of github.com:OWASP/OFFAT into migrate-to-golang
- 3e3fa81 Merge branch 'migrate-to-golang' of github.com:OWASP/OFFAT into migrate-to-golang
- 0e2c906 Bump certifi in /src in the pip group across 1 directory
v0.19.3
What's Changed
- fix ssl verification bug by @dmdhrumilmistry in #129
- Dev RELEASE v0.19.3 by @dmdhrumilmistry in #130
Full Changelog: v0.19.2...v0.19.3
v0.19.2
What's Changed
- Fix
ssl_verify
andhttps
detection by @nrathaus in #126 - Chore: Bump Deps by @dmdhrumilmistry in #127
- Dev RELEASE: v0.19.2 by @dmdhrumilmistry in #128
Full Changelog: v0.19.1...v0.19.2
v0.19.1
What's Changed
- Bump certifi from 2024.6.2 to 2024.7.4 in /src in the pip group across 1 directory by @dependabot in #121
- Bump certifi from 2024.6.2 to 2024.7.4 in /src in the pip group across 1 directory by @dependabot in #122
- Bump the pip group across 1 directory with 2 updates by @dependabot in #123
- chore: bump deps versions by @dmdhrumilmistry in #124
- Dev RELEASE: v0.19.1 by @dmdhrumilmistry in #125
Full Changelog: v0.19.0...v0.19.1
v0.19.0
What's Changed
- Bump requests from 2.31.0 to 2.32.0 in /src in the pip group across 1 directory by @dependabot in #112
- New tests for
fill_params
andBaseParser
by @nrathaus in #111 - SSL Verify was not properly handled by @nrathaus in #115
- Bump the pip group across 1 directory with 2 updates by @dependabot in #117
- chore: Fix api by @dmdhrumilmistry in #118
- chore: Use pypi OIDC by @dmdhrumilmistry in #119
- Dev RELEASE: v0.19.0 by @dmdhrumilmistry in #120
New Contributors
- @dependabot made their first contribution in #112
Full Changelog: v0.18.0...v0.19.0
v0.18.0
What's Changed
- 96 false positive on ssti check by @dmdhrumilmistry in #101
- Set the 'type' param so that future calls will know its type by @nrathaus in #99
- Fix empty matches by @nrathaus in #104
- Additional regexs by @nrathaus in #107
- rename result to vulnerable by @dmdhrumilmistry in #108
- Bump deps and project versions by @dmdhrumilmistry in #109
- Dev RELEASE: v0.18.0 by @dmdhrumilmistry in #110
Full Changelog: v0.17.5...v0.18.0
v0.17.5
What's Changed
- FEATURE: Add Security Missing Auth checks by @dmdhrumilmistry in #93
- Dev RELEASE: v0.17.5 by @dmdhrumilmistry in #94
Full Changelog: v0.17.4...v0.17.5
v0.17.4
What's Changed
- 'black', src/offat/tester/tester_utils.py wrong parameter by @nrathaus in #89
- remove unused base docker file by @dmdhrumilmistry in #90
- update dependencies for python 3.10 by @dmdhrumilmistry in #91
- Dev RELEASE: v0.17.4 by @dmdhrumilmistry in #92
New Contributors
Full Changelog: v0.17.3...v0.17.4
v0.17.3
What's Changed
- add ssti tests by @dmdhrumilmistry in #83
- remove redundant data stored in results by @dmdhrumilmistry in #84
- Repetition fix and Tests Enhancements by @dmdhrumilmistry in #85
- Bump project version and deps by @dmdhrumilmistry in #86
- Dev RELEASE: v0.17.3 by @dmdhrumilmistry in #87
Full Changelog: v0.17.2...v0.17.3
v0.17.2
What's Changed
- create action.yml file by @dmdhrumilmistry in #80
- Dev Release: v0.17.2 Publish Github Action by @dmdhrumilmistry in #81
Full Changelog: v0.17.1...v0.17.2