With Cherrybomb you can stop half-done API specifications!Cherrybomb is a CLI tool that helps you avoid undefined user behavior by validating your API specifications.
curl https://cherrybomb.blstsecurity.com/install | /bin/bash
cherrybomb oas --file example-oas.json --verbosity 1
cherrybomb oas --file example-oas.json --param-table
Validates Your OpenAPI Specification
CherryBomb is a CLI tool that helps API designers and developers avoid undefined user behavior. Cherrybomb validates API specifications through the various stages of API design.
Supports OpenAPI 3+ & HTTP Logs
The OpenAPI Specification (OAS) is a standard for documenting REST APIs. HTTP logs are a type of log that contains information about HTTP requests and responses.
Cherrybomb supports the OpenAPI Specification, which is a standard for specifying how APIs work. Cherrybomb also supports HTTP logs, which can be used to debug API calls.
This allows for greater flexibility and ease of use when developing web applications.
4 Different Actions
-
OpenAPI Specification Scan
Passive scan that checks the OAS for common mistakes and lack of best practices. -
Parameter Table
Cherrybomb takes in the OAS and turns it into a descriptive parameter table. -
Mapper
Takes in traffic logs and maps the business logic flow of the application, then outputs a digest file. -
Visualizer
Takes in the digest file from the mapper and visualizes the business logic flow of the application.Use the JSON you get from the CLI and put it here to visualize your network
