Jsonator is a tool designed to generate fuzzing wordlists specifically for JSON data structures. It aids in discovering potential vulnerabilities, misconfigurations, or edge cases in applications that handle JSON data.
The objective actually to find unexpected behavior of the software or API.
- 40 custom json fuzzing technique
- output in stdout
- custom input
To start generating fuzzing wordlists, define the input first in the input.json
file :
{
"key1":"username",
"key2":"password",
"value_key1":"[email protected]",
"value_key1_2":"[email protected]",
"value_key2":"Admin123",
"value_key2_2":"User123",
"ip":"127.0.0.1",
"domain":"example.com"
}
Run the script :
python jsonator.py
Output :
"username": "admin","password": "admin"
"username": null,"password": null
"username": "[email protected]","password": null
"username": "[email protected]","password": true
...
...
...
Contributions are welcome!