Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
camouflage-server
Advanced tools
HTTP/gRPC Mocking tool
Camouflage is a service virtualization tool inspired by namshi/mockserver. Camouflage works on a file based endpoint configuration system, which means it allows you to create a mock endpoint by simply creating a set of directories and a mock file, using which necessary responses are generated when you call the endpoint.
🔥 File based mocking support for HTTP, HTTPS, HTTP2, gRPC and websockets. 🔥
⚡ Dynamic/realistic responses without having to write any code. ⚡
🧩 Flexibility to partially or fully code your responses. 🧩
🎯 Conditional responses based on request parameters. 🎯
🌟 Inbuilt Caching - In memory and redis. 🌟
🧮 Ability to fetch and condition the response using external data. Currently supported data sources are CSV and postgres. 🧮
⏳ Delay Simulation. ⏳
🔍 Inbuilt monitoring. 🔍
🦺 Inbuilt backup and restore mechanism. 🦺
⏩ Quick start with camouflage init
and camouflage restore
modules. ⏩
🎊 Deployable on standalone VMs, Dockers and Kubernetes. 🎊
📁 Comes with a file explorer UI that allows modification of mock files hosted remotely. 📁
npm install -g camouflage-server
camouflage --version
to validate the installation was successful.camouflage init
. This creates a basic skeleton of the folders you'd need in order to get started. You can modify these folders as per your requirements.camouflage --config config.yml
loglevel: info
cpus: 1
monitoring:
port: 5555
ssl:
cert: "./certs/server.cert"
key: "./certs/server.key"
protocols:
http:
enable: true
mocks_dir: "./mocks"
port: 8080
https:
enable: false
port: 8443
http2:
enable: false
port: 8081
ws:
enable: false
mocks_dir: "./ws_mocks"
port: 8082
grpc:
enable: false
host: localhost
port: 4312
mocks_dir: "./grpc/mocks"
protos_dir: "./grpc/protos"
backup:
enable: false
cron: "0 * * * *" # Hourly Backup
cache:
enable: false
ttl_seconds: 300
injection:
enable: false
ext_helpers: "./custom_handlebar.json" # Remove if not needed
origins:
- http://localhost:3000/
- http://localhost:3001/
- http://localhost:5000/
Camouflage uses a file based system to configure the endpoints. For example, to create a mock to the endpoint /hello-world
:
${MOCKS_DIR}/hello-world
${MOCKS_DIR}/hello-world
HTTP/1.1 200 OK
X-Custom-Header: Custom-Value
Content-Type: application/json
{
"greeting": "Hey! It works!"
}
Navigate to http://localhost:8080/hello-world
${MOCK_DIR}
is defined in config.yaml
as protocols.http.mocks_dir
. Refer to docs for more details.
All and any relevant contributions to the project are welcome. Easiest way to contribute to Camouflage is to 🌟 the project. You can also help find typos and grammatical mistakes in the documentation to earn a quick 🟩 for your Github profile.
If you'd like to get into technical nitty gritty, I have tried my best to provide relevant comments throughout the code base with a JSDocs available too. Since we are still in beta, there are frequent changes in the codebase, which might at times lead to outdated JSDocs, in which case, feel free to reach out via discussions or join us on discord.
Raise an issue if you think something is not working as expected, or if you'd like to request a new feature
Read the detailed contributing guide
Camouflage is quickly approaching it's first release i.e. v1.0.0, however while it is still in beta, there might be some bugs, missed use cases, incorrect implementations of some functionalities. This is to be expected. But, the good news is that we are constantly evolving.
There might be times when latest changes have not gone to release yet. You can find such changes in the develop
branch of the repository, which is the most updated version of Camouflage. If you'd like to get your hands on the upcoming release of Camouflage at any point, you can build it from the source. However, since this source might contain changes that are not tested yet and are not ready for use, you might want to proceed with caution.
git clone https://github.com/testinggospels/camouflage.git
develop
branch: git checkout develop
npm install
npm build
node bin/camouflage.js --config ./config.yml
npm pack
npm install -g camouflage-server-0.0.0-development.tgz
or npm install -g camouflage-server-0.0.0-development.zip
MIT License
Copyright (c) 2021 testinggospels
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.
FAQs
Easily mock your webservices while testing frontends.
The npm package camouflage-server receives a total of 3,425 weekly downloads. As such, camouflage-server popularity was classified as popular.
We found that camouflage-server demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.