BBVA / apicheck
The DevSecOps toolset for REST APIs
☆274Updated 2 years ago
Alternatives and similar repositories for apicheck:
Users that are interested in apicheck are comparing it to the libraries listed below
- Automate security tests using Burp Suite.☆225Updated 9 months ago
- Container Security Verification Standard☆58Updated 5 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆350Updated 4 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆174Updated 2 years ago
- Static security checker for Dockerfiles☆93Updated last year
- A simple web app that helps developers understand the ASVS requirements.☆157Updated last month
- ADAPT is a tool that performs automated Penetration Testing for WebApps.☆189Updated 5 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆339Updated 4 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆278Updated last week
- Finding exposed secrets and personal data in GitLab☆197Updated 4 months ago
- An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.☆179Updated this week
- vulnerable single sign on☆147Updated 8 months ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆101Updated last year
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆105Updated 2 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆178Updated 3 months ago
- ☆124Updated last year
- threatspec - continuous threat modeling, through code☆353Updated 4 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- 🏰 A Python script for AWS S3 bucket enumeration.☆141Updated 2 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆470Updated last year
- OWASP Cloud Security - Enabling conversations through threat and control stories☆179Updated 6 years ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆80Updated 5 years ago
- The Secure Coding Framework☆269Updated 4 years ago
- Security Testing is not as simple as right click > Scan. It's messy, a tough game. What if you had missed to test just that one thing and…☆272Updated 7 months ago
- Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.☆416Updated 6 years ago
- PatrowlHears - Vulnerability Intelligence Center / Exploits☆162Updated last week
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆110Updated 2 months ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆557Updated 2 years ago