FAQ

  • Is Ammonite right for me?

    Ammonite is a great tool for Quality Assurance, Information Security, Penetration Testing and Application Security professionals. Yes!

  • What forms of payment are accepted?

    We can accept payment by PayPal, major credit card or bank wire.

  • How do I use Ammonite?

    Generally speaking, you would fire up Fiddler, add the target URL to the URL list, select Automatic mode and then begin interacting with the application. As you use the application, Ammonite will identify suitable test cases and begin testing. Progress can be monitored in the lower half of the Testing tab.

  • What is the difference between Manual and Automatic mode?

    In manual mode, Ammonite will not do anything without your instruction. In automatic mode, sessions matching the URL filters specified will be tested and inspected with passive scanners using current configuration settings.

  • What is the URL list for?

    Use the URL list to specify which URLs should be tested when Ammonite is in automatic mode. Each element in the list is interpreted as a regular expression and matched against every new session. If the regex matches a new session, it will be submitted for testing.

  • How do I manually test a session?

    To manually test a session, right-click the session in the Fiddler session list, then click Ammonite, followed by Test. You can also specify what should be tested for and how it should be tested by tweaking configuration options on the Testing tab.

  • How can I export a request as Python?

    To export a request as Python, right-click the session in the Fiddler session list, then click Ammonite, followed by Export to Python 2.7 or 3.0

  • How do I view the vulnerabilities associated with a given session?

    Right-click the session in the Fiddler session list, then click Ammonite, followed by Issues.

  • How do I view the results associated with a test case?

    Double click the desired test case from the lower portion of the Testing tab.

  • Can I delete a test case?

    Select the desired test case from the lower portion of the Testing tab then press the Delete key.

  • Can I delete a vulnerability?

    Select the desired vulnerability from the upper portion of the Results tab then press the Delete key.

  • Who can I contact with bugs/questions?

    Send an email with your question or bug report to ammonite@ryscc.com.

  • Why the name?

    Ammonite was designed to make web applications explode. Ammonite is also a contraction of Ammonium Nitrate, which is explosive.

Ammonite

Thirty day free trial, no purchase required.