Skip to content

marcoagner/boast

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 2 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
api
 
 
build
 
 
cmd/boast
 
 
config
 
 
docs
 
 
examples
 
 
log
 
 
receivers
 
 
storage
 
 
testdata
 
 
LICENSE
 
 
Makefile
 
 
NOTICE
 
 
README.md
 
 
boast.go
 
 
boast_test.go
 
 
go.mod
 
 
go.sum
 
 
BOAST Documentation

README.md

BOAST

The BOAST Outpost for AppSec Testing (v0.1.1)

BOAST is a server built to receive and report Out-of-Band Application Security Testing reactions.

BOAST overview

Some application security tests will only cause out-of-band reactions from the tested applications. This means that these reactions will not be sent as a response to the testing client and, due to their nature, they will remain unseen when the client is behind a third-party NAT. For the purpose of being able to clearly see those reactions, another piece is needed. A piece that, not limited by a third-party NAT, is freely reachable on the Internet and can also speak the received protocols in multiple ports for maximum impact. BOAST is that piece.

BOAST features DNS, HTTP, and HTTPS protocol receivers with support for multiple simultaneous ports for each receiver. And implementing protocol receivers for new protocols or to better suit your needs is almost as simple as implementing the protocol interaction itself.

Documentation

The project is documented here.

About

The BOAST Outpost for AppSec Testing (v0.1.1)

Topics

security appsec security-tools security-testing oast appsec-testing

Resources

Readme

License

Apache-2.0 license

Stars

47 stars

Watchers

1 watching

Forks

7 forks

Releases

2 tags

Languages