Frequently Asked Questions


What is ExploitMe REST

A deliberately vulnerable Representational State Transfer (REST) API built with PHP and MySQL.


Why ExploitMe REST

  • To learn server side and client side security issues in REST environment.
  • For understanding common weak points in REST implementations.
  • To be a test bed for REST security testing tools
  • For learning to perform security tests on web services.
  • To demonstrate possible security issues in client-server communication.


Who is going to benefit from it

All who are interested in REST API. Developers, security professionals, students, instructors etcetera.


When it is going to launch

Version 1.0 is already out with basic features. You can get it from download page.


Where this can be used

In security testing labs. Using it in a public facing server or production environment is more or less like installing a back-door to your system.


Which all platforms are supported

The server part of the code can be run on any system that supports PHP and MySQL. The web client can be used from any web browser and there is also an Android application available. However, you are free to write your own client for other platforms.