Alternatives and similar repositories for AwesomeAPIAttacksCheatsheet

Users that are interested in AwesomeAPIAttacksCheatsheet are comparing it to the libraries listed below

• PortSwigger / reflected-parameters

  View on GitHub
  ☆23Mar 3, 2020Updated 5 years ago
• ihebski / hacks

  View on GitHub
  Personnel scripts,projects notes,hacks,random thoughts,mindmap etc....
  ☆35Feb 14, 2025Updated last year
• hy0jer / NoAuthScan

  View on GitHub
  一款支持检测web应用程序未授权访问缺陷的burp suite插件，可自定义配置检测字段以及返回包json数据分析
  ☆12Apr 22, 2024Updated last year
• Mr-xn / CVE-2022-40127

  View on GitHub
  Apache Airflow < 2.4.0 DAG example_bash_operator RCE POC
  ☆41Nov 19, 2022Updated 3 years ago
• lucsemassa / ad_share_enum

  View on GitHub
  Active Directory share enumeration tool
  ☆12Apr 28, 2025Updated 9 months ago
• ahmadchen / Havij_Pro

  View on GitHub
  ☆11Oct 10, 2020Updated 5 years ago
• black2c7 / Shadowrocket-Rules-NetflixDisney

  View on GitHub
  四万多条规则，不含广告过滤，避免误杀，内含PAYPAL，TIKTOK，TELEGRAM，YOUTUBE，STREAMING (包含迪士尼奈飞亚马逊等流媒体)，WEIBO分组规则，需要自己手动在小火箭里面-全局路由-分组-添加分组，需要以上哪个分组添加哪个，没添加的默认走PR…
  ☆13Feb 4, 2023Updated 3 years ago
• kobs0N / iOS-Penetration-Test-Tools

  View on GitHub
  ☆11Aug 25, 2018Updated 7 years ago
• sunny0day / burp-auto-drop

  View on GitHub
  Burp extension to automatically drop requests that match a certain regex.
  ☆10Mar 10, 2023Updated 2 years ago
• MantisSTS / JSReconduit

  View on GitHub
  Passive JavaScript reconnaissance for penetration testers — bridging Burp Suite traffic into structured, AST-based analysis in VSCode.
  ☆35Feb 5, 2026Updated last week
• sjkim1127 / Reversecore_MCP

  View on GitHub
  A security-first MCP server empowering AI agents to orchestrate Ghidra, Radare2, and YARA for automated reverse engineering.
  ☆45Jan 21, 2026Updated 3 weeks ago
• 01ANG / Winos4.0

  View on GitHub
  PC远控winos4.0成品
  ☆12Sep 13, 2023Updated 2 years ago
• ahmetak4n / radar

  View on GitHub
  Scanner for misconfigured DevSecOps or Security tools on internet like SonarQube, GoPhish etc.
  ☆12Apr 4, 2025Updated 10 months ago
• reewardius / nuclei-fast-templates

  View on GitHub
  ☆14Jan 23, 2026Updated 3 weeks ago
• CyberSecurityUP / ImgPayload

  View on GitHub
  Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …
  ☆24Jun 11, 2025Updated 8 months ago
• skavans / universal-proxy-pac

  View on GitHub
  The Proxy Auto Configuration (PAC) file dynamic generator which allows you to specify the proxying rules and the PAC-file will be generat…
  ☆10Dec 5, 2019Updated 6 years ago
• shr3ddersec / Writeups

  View on GitHub
  Random Tips and Writeups.
  ☆15Feb 21, 2019Updated 6 years ago
• lodetomasi / ai-detects-if-cve-was-zero-day

  View on GitHub
  Multi-agent AI system using GPT-4o, DeepSeek v3, and Llama 3.3 to detect if CVE vulnerabilities were exploited as zero-days. Analyzes…
  ☆19Aug 31, 2025Updated 5 months ago
• Kloudle / pentesting-ibm-cloud

  View on GitHub
  ☆20Jan 12, 2022Updated 4 years ago
• iamunixtz / jshunter-burp

  View on GitHub
  A powerful Burp Suite extension that automatically detects JavaScript URLs from HTTP traffic, scans them using TruffleHog for secrets det…
  ☆31Oct 23, 2025Updated 3 months ago
• murat-exp / SAPLAR

  View on GitHub
  SAPLAR - LFI & Path Traversal Scanner
  ☆15Mar 11, 2025Updated 11 months ago
• ceramicskate0 / sysmon-config

  View on GitHub
  CeramicSkate0 Sysmon configuration fork file template with default high-quality event tracing
  ☆10Sep 29, 2023Updated 2 years ago
• phlmox / urlgod

  View on GitHub
  Recon tool for URLs discovery
  ☆11Jun 19, 2024Updated last year
• HernanRodriguez1 / RevershellTCP_BypassAMSI

  View on GitHub
  ☆12Apr 17, 2022Updated 3 years ago
• dzmitry-savitski / vhost_bruteforcer

  View on GitHub
  Virtual host bruteforcer against given network range or single ip
  ☆11Mar 21, 2019Updated 6 years ago
• abdalrahman0x80 / smtpEmailChecker

  View on GitHub
  powerfull pentesting tool to checking email by smtp command
  ☆10Feb 29, 2024Updated last year
• xkmikze / kzxss

  View on GitHub
  Lightweight reflection scanner
  ☆20Aug 31, 2025Updated 5 months ago
• IvanGlinkin / CVE-2006-3392

  View on GitHub
  This small script helps to avoid using MetaSploit (msfconsole) during the Enterprise pentests and OSCP-like exams. Grep included function…
  ☆14Mar 9, 2023Updated 2 years ago
• kiber-io / apkdgo

  View on GitHub
  ☆23Sep 17, 2025Updated 4 months ago
• yuyu-19 / PoliDL-GUI

  View on GitHub
  ☆10Nov 7, 2022Updated 3 years ago
• Anof-cyber / apkleaks

  View on GitHub
  An python script that use apkleaks to scan the android application over web
  ☆11Jun 2, 2022Updated 3 years ago
• AbdelrhmanUZaki / ZakiDLP

  View on GitHub
  A GUI version of yt-dlp built in PyQt5 to make it easier to use.
  ☆11Sep 17, 2023Updated 2 years ago
• kN6jq / gatherNuclei

  View on GitHub
  一款集成了Nuclei模板管理、多空间引擎搜索的网络安全工具集。为安全研究人员提供高效的工作体验。
  ☆21Feb 2, 2026Updated last week
• junnlikestea / massprint

  View on GitHub
  A tool to do basic fingerprinting across a large number of hosts
  ☆11Oct 20, 2020Updated 5 years ago
• interprobe / CoDeRedlight

  View on GitHub
  A simple CDR software for disarming malicious contents contained in documents.
  ☆10Nov 7, 2022Updated 3 years ago
• isclayton / viewstalker

  View on GitHub
  A tool for identifying and exploiting vulnerable Viewstate implementations in ASP.NET
  ☆59Dec 8, 2025Updated 2 months ago
• daffainfo / apiguesser

  View on GitHub
  Go script to guess an API key / OAuth token found during pentest. CLI version of https://github.com/daffainfo/apiguesser-web/
  ☆45Aug 28, 2022Updated 3 years ago
• nullenc0de / reverse-apk

  View on GitHub
  ☆54Nov 5, 2024Updated last year
• kymb0 / web_study

  View on GitHub
  my n00b notes on web_study
  ☆16May 29, 2025Updated 8 months ago