Alternatives and similar repositories for API-Penetration-Testing

Users that are interested in API-Penetration-Testing are comparing it to the libraries listed below

• blackhatethicalhacking / SSRFPwned
  Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…
  ☆131Updated last year
• jhaddix / SubreconGPT
  ☆113Updated 2 years ago
• Hacking-Notes / Burp-Suite-Obsidian-Integration
  Organize, track, and share vulnerability findings effortlessly. This Burp Suite extension integrates with Obsidian, offering a proven not…
  ☆37Updated 10 months ago
• shreyaschavhan / python-for-awae
  Python for AWAE (Advanced Web Attacks and Exploitation)
  ☆101Updated 2 years ago
• CyberSecurityUP / Web-PenTest-Checklist
  ☆54Updated 2 years ago
• CristiVlad25 / misc
  Scripts and other stuff.
  ☆132Updated 2 years ago
• RevoltSecurities / Dnsbruter
  Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…
  ☆124Updated last year
• Lawlez / myOSWE
  Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.
  ☆102Updated last week
• zapstiko / Bug-Bounty
  Here Are Some Bug Bounty Resource From Twitter
  ☆109Updated 8 months ago
• boobooHQ / private_templates
  Private Nuclei Templates
  ☆100Updated 11 months ago
• HacktivistRO / Bug-Bounty-Wordlists
  This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…
  ☆107Updated last year
• InfoSecWarrior / Offensive-Pentesting-Web
  A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed…
  ☆99Updated 11 months ago
• h4md153v63n / eLearnSecurity-Web-Application-Penetration-Tester-eXtreme-eWPTXv2
  eLearnSecurity Web application Penetration Tester eXtreme (eWPTXv2)
  ☆28Updated 2 years ago
• mmarting / unwaf
  Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…
  ☆98Updated 7 months ago
• overgrowncarrot1 / eCPPT-Notes
  ☆43Updated 4 years ago
• HernanRodriguez1 / SQLi_Sleeps
  ☆124Updated 5 months ago
• un9nplayer / AutoRecon-XSS
  AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…
  ☆133Updated last year
• thelicato / portswigger-labs
  A collection of solutions for every PortSwigger Academy Lab (in progress)
  ☆110Updated 3 years ago
• anmolksachan / WayBackupFinder
  A passive way to find backups/ sensitive information.
  ☆87Updated 6 months ago
• EmperialX / XSS-Automation-Tool
  "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…
  ☆91Updated last year
• 0xb120 / cheatsheets_and_ctf-notes
  0xbro's cheatsheets and CTFs notes
  ☆89Updated last month
• BugBountyzip / bugbounty.zip
  ☆78Updated 8 months ago
• Hari-prasaanth / Thick-Client-Pentest-Checklist
  A OWASP Based Checklist With 80+ Test Cases
  ☆155Updated 3 years ago
• Fr4nzisko / Bug_Bounty_Web_and_API_Tools
  Bug Bounty Web and API Payloads
  ☆39Updated last year
• sh3bu / Portswigger_labs
  This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…
  ☆104Updated 6 months ago
• BiswajeetRay7 / Fuzzing-wordlist
  ☆12Updated 3 years ago
• iamthefrogy / frogy2.0
  Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit
  ☆331Updated 3 months ago
• Cybersecurity-Ethical-Hacker / xssuccessor
  ⚡ XSSuccessor is a powerful, asynchronous Cross-Site Scripting (XSS) detection tool.
  ☆55Updated last year
• Alevsk / rmm
  Recon MindMap (RMM)
  ☆177Updated last year
• rodolfomarianocy / Tricks-Web-Pentest
  Web Application Penetration Testing
  ☆146Updated 9 months ago