API Security DAST & Oprations
☆316Jul 5, 2023Updated 2 years ago
Alternatives and similar repositories for APIKiller
Users that are interested in APIKiller are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一款API水平越权漏洞检测工具☆767Jun 27, 2023Updated 3 years ago
- 六大云存储,泄露利用检测工具☆1,259Mar 28, 2025Updated last year
- 一个基于网络空间搜索引擎的攻击面管理平台,可定时进行资产信息爬取,及时发现新增资产,本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源,并对获取到的数据进行去重与清洗☆460Apr 19, 2023Updated 3 years ago
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,056Oct 7, 2022Updated 3 years ago
- 一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services☆1,861Nov 26, 2025Updated 7 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- APIKit:Discovery, Scan and Audit APIs Toolkit All In One.☆2,274Apr 2, 2024Updated 2 years ago
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,476Apr 25, 2024Updated 2 years ago
- Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件☆1,324Jun 29, 2024Updated 2 years ago
- 面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams☆2,096Updated this week
- 对Auth/Waf 自动化bypass的burpsuite插件☆1,285May 10, 2026Updated last month
- Nemo是用来进行自动化信息收集的一个简单平台,通过集成常用的信息收集工具和技术,实现对内网及互联网资产信息的自动收集,提高隐患排查和渗透测试的工作效率。☆2,068Feb 9, 2026Updated 4 months ago
- 一款代理扫描器☆567May 5, 2023Updated 3 years ago
- Antenna是58同城安全团队打造的一款辅助安全从业人员验证网络中多种漏洞是否存在以及可利用性的工具。其基于带外应用安全测试(OAST)通过任务的形式,将不同漏洞场景检测能力通过插件的形式进行集合,通过与目标进行out-bind的数据通信方式进行辅助检测。☆720Jun 6, 2023Updated 3 years ago
- 基于burpsuite的资产分析工具☆475Apr 29, 2023Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接☆865Aug 30, 2023Updated 2 years ago
- Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。☆1,413Apr 14, 2026Updated 2 months ago
- 一款OutLook信息收集工具☆245May 23, 2023Updated 3 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆30May 21, 2025Updated last year
- 基于go编写的跨平台、稳定、隐秘的多级代理内网穿透工具☆1,056Apr 23, 2023Updated 3 years ago
- 爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应☆761Jul 20, 2023Updated 2 years ago
- A Swagger API Exploit☆1,379Jun 7, 2024Updated 2 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆428Mar 12, 2024Updated 2 years ago
- HeapDump敏感信息提取工具☆1,667Dec 15, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite o…☆612Jul 5, 2024Updated last year
- 互联网厂商API利用工具。☆573Sep 13, 2024Updated last year
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆550Mar 6, 2025Updated last year
- WebSocket 内存马/Webshell,一种新型内存马/WebShell技术☆1,494Apr 10, 2023Updated 3 years ago
- 一种另辟蹊径的免杀执行系统命令的木马☆492Dec 4, 2023Updated 2 years ago
- Hearts K-企业资产发现与脆弱性检查工具,自动化资产信息收集与漏洞扫描☆250Dec 25, 2023Updated 2 years ago
- CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅助代码审计人员快速定位源码可能存在的漏洞。☆852Jul 6, 2023Updated 2 years ago
- 开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)☆1,628Oct 10, 2023Updated 2 years ago
- 云安全利用工具-云平台AK/SK-WEB利用工具,添加AK/SK自动检测资 源,无需手动执行,支持云服务器、存储桶、数据库操作☆597Dec 19, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- 项目监控工具 以及 Codeql 自动运行☆312Apr 13, 2023Updated 3 years ago
- A Go library for generating Java deserialization payloads.☆154Sep 9, 2024Updated last year
- 高危漏洞利用工具☆1,830Feb 12, 2025Updated last year
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆787Feb 13, 2025Updated last year
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆461Aug 20, 2025Updated 10 months ago
- 建议使用新版:https://github.com/jar-analyzer/jar-analyzer☆898Nov 30, 2023Updated 2 years ago
- Exchange 服务器安全性的辅助测试工具☆333Jul 21, 2023Updated 2 years ago