Skip to content
/ firepwn-tool Public

Firepwn is a tool made for testing the Security Rules of a firebase application.

License

GPL-3.0 license
625 stars 39 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

0xbigshaq/firepwn-tool

BranchesTags

Repository files navigation

firepwn

A tool for testing Firebase Security Rules by simulating real client SDK behavior. Unlike most Firebase pentest scripts that rely on the REST API, firepwn uses the actual Firebase Client SDK to test both authentication and authorization across multiple Google services.

Features

Firebase Initialization

Configure a target project by entering its firebaseConfig values (apiKey, authDomain, databaseURL, projectId, storageBucket). Supports both individual form fields and pasting a raw JSON/JS config object.

./screenshots/init-form.png

Authentication

Supports multiple Firebase Authentication methods:

  • Email/Password - sign in with existing credentials or register a new account

./screenshots/auth-1.png

  • Google OAuth - paste an oauthIdToken captured from the target app's sign-in flow (e.g. from browser DevTools) to assume a Google session

./screenshots/auth-2-o.png

  • MFA (SMS) - complete multi-factor authentication challenges with SMS verification codes

Firestore Database

Full CRUD operations on Firestore:

  • Get - with document limit, sort order, and query filters (==, <, <=, >, >=, array-contains, in)
  • Set - create documents or overwrite existing ones (with optional merge mode)
  • Update - modify specific fields in existing documents
  • Delete - remove documents

./screenshots/firestore-get.png

Supports nested collections/subcollections.

Cloud Storage

Interact with Firebase Storage buckets:

  • List files and directories
  • Upload / Download files
  • Delete files
  • Get metadata for stored objects

Cloud Functions

Invoke callable Cloud Functions with custom parameters to test authorization on backend logic.

Custom Scripting

Firebase services are attached to window globals during initialization, so you can run custom queries directly from the browser console:

Variable Reference
window.authService Auth
window.firestoreService Firestore
window.functionsService Functions
window.storageService Storage

./screenshots/scripting-fb.gif

Output Log

All operations are logged in a real-time output panel with success/error/info indicators.

Usage

  1. Launch the tool and fill in the initialization form with the target project's firebaseConfig.
  2. Click Start to bootstrap the Firebase SDKs. The rest of the UI unlocks once initialization succeeds.
  3. Use the Auth panel to authenticate (email/password, OAuth, or MFA).
  4. Run Firestore queries, Storage operations, or Cloud Function invocations from the respective panels to verify authorization controls.

Getting Started

npm install
npm run dev

Then open http://localhost:3000.

License

GPL-3.0

About

Firepwn is a tool made for testing the Security Rules of a firebase application.

Topics

firebase firebase-database firebase-security firestore firebase-pentest

Resources

Readme

License

GPL-3.0 license
Activity

Stars

625 stars

Watchers

4 watching

Forks

39 forks
Report repository

Releases

No releases published

Contributors 4

  •  
  •  
  •  
  •  

Languages