REST-API goat project hacking while chaining postman into burp suite

Installation

Docker

First of all we need to ensure we can install this application and there are two ways to get there but the easiest way should be to use docker. We need to install docker itself first but that should just be 2 simple commands, the first one is to remove old installations of docker and the next command will install docker itself.sudo apt-get remove docker docker-engine docker.io

sudo apt install docker.io

To start up docker we can issue the following command:

sudo systemctl start docker

And to make sure docker always starts up with starting linux we can issue the following command:

sudo systemctl enable docker

This should ensure we always start up docker when the OS starts.

Rest-API goat

To install the application itself, we are going to use docker and we are first going to pull the docker image before running it. I get the repo from github:

wget <https://github.com/optiv/rest-api-goat/archive/refs/heads/master.zip>

unzipping the file is as easy :

unzip master.zip

Now we can build the docker container from the dockerfile

docker build -t rest-api-goat:latest .