Hello Akto community,
Akto has the capability to detect API changes, but I was unable to trigger test cases when API changes were detected. For example, with the addition of a new parameter like ?file= or a new header like x-auth-Token: JWT Token I want to test the file parameter for local file inclusion. I also want to run some JWT attack scenarios for the x-auth-token header. Is it possible in Akto?
Thanks for your query.
Great use case.
Today we don’t have a way to trigger test if we detect new params. Soon we will be releasing this feature. Will update the thread when it’s released.
I also want to run some JWT attack scenarios for the **x-auth-token** header. Is it possible in Akto?
for the above, do the following:
- Go to settings> auth types
- add a new auth type where header key = x-auth-token
- save it
- You will be able to run JWT test now.