API Security DAST & Oprations
☆320Jul 5, 2023Updated 2 years ago
Alternatives and similar repositories for APIKiller
Users that are interested in APIKiller are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一款API水平越权漏洞检测工具☆767Jun 27, 2023Updated 2 years ago
- 一个基于网络空间搜索引擎的攻击面管理平台,可定时进行资产信息爬取,及时发现新增资产,本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源,并对获取到的数据进行去重与清洗☆460Apr 19, 2023Updated 2 years ago
- 六大云存储,泄露利用检测工具☆1,252Mar 28, 2025Updated last year
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,053Oct 7, 2022Updated 3 years ago
- 一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services☆1,823Nov 26, 2025Updated 4 months ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- APIKit:Discovery, Scan and Audit APIs Toolkit All In One.☆2,254Apr 2, 2024Updated 2 years ago
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,473Apr 25, 2024Updated last year
- Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件☆1,314Jun 29, 2024Updated last year
- 一款完全被动监听的谷歌插件,用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗☆1,662Jan 19, 2023Updated 3 years ago
- 面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams☆2,041Feb 3, 2026Updated 2 months ago
- 对Auth/Waf 自动化bypass的burpsuite插件☆1,126Feb 28, 2026Updated last month
- Nemo是用来进行自动化信息收集的一个简单平台,通过集成常用的信息收集工具和技术,实现对内网及互联网资产信息的自动收集,提高隐患排查和渗透测试的工作效率。☆2,034Feb 9, 2026Updated 2 months ago
- 一款代理扫描器☆566May 5, 2023Updated 2 years ago
- Antenna是58同城安全团队打造的一款辅助安全从业人员验证网络中多种漏洞是否存在以及可利用性的工具。其基于带外应用安全测试(OAST)通过任务的形式,将不同漏洞场景检测能力通过插件的形式进行集合,通过与目标进行out-bind的数据通信方式进行辅助检测。☆722Jun 6, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 基于burpsuite的资产分析工具☆476Apr 29, 2023Updated 2 years ago
- 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接☆863Aug 30, 2023Updated 2 years ago
- Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。☆1,363Mar 20, 2026Updated 3 weeks ago
- 一款OutLook信息收集工具☆244May 23, 2023Updated 2 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆31May 21, 2025Updated 10 months ago
- 基于go编写的跨平台、稳定、隐秘的多级代理内网穿透工具☆1,060Apr 23, 2023Updated 2 years ago
- 爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应☆756Jul 20, 2023Updated 2 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆426Mar 12, 2024Updated 2 years ago
- HeapDump敏感信息提取工具☆1,647Dec 15, 2025Updated 3 months ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite o…☆615Jul 5, 2024Updated last year
- A Swagger API Exploit☆1,372Jun 7, 2024Updated last year
- 互联网厂商API利用工具。☆569Sep 13, 2024Updated last year
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆548Mar 6, 2025Updated last year
- WebSocket 内存马/Webshell,一种新型内存马/WebShell技术☆1,492Apr 10, 2023Updated 3 years ago
- 一种另辟蹊径的免杀执行系统命令的木马☆493Dec 4, 2023Updated 2 years ago
- Hearts K-企业资产发现与脆弱性检查工具,自动化资产信息收集与漏洞扫描☆252Dec 25, 2023Updated 2 years ago
- CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅助代码审计人员快速定位源码可能存在的漏洞。☆850Jul 6, 2023Updated 2 years ago
- 开源、轻量、快速、跨平台 的网站漏洞扫描工具,帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)☆1,624Oct 10, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- 云安全利用工具-云平台AK/SK-WEB利用工具,添加AK/SK自动检测资源,无需手动执行,支持云服务器、存储桶、数据库操作☆588Dec 19, 2024Updated last year
- 项目监控工具 以及 Codeql 自动运行☆314Apr 13, 2023Updated 3 years ago
- A Go library for generating Java deserialization payloads.☆155Sep 9, 2024Updated last year
- 高危漏洞利用工具☆1,834Feb 12, 2025Updated last year
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆457Aug 20, 2025Updated 7 months ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆780Feb 13, 2025Updated last year
- 建议使用新版:https://github.com/jar-analyzer/jar-analyzer☆899Nov 30, 2023Updated 2 years ago