Alternatives and similar repositories for API-fuzzer

Users that are interested in API-fuzzer are comparing it to the libraries listed below

• Fuzzapi / fuzzapi
  Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
  ☆669Updated 4 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆491Updated 2 years ago
• RUB-NDS / CORStest
  A simple CORS misconfiguration scanner
  ☆423Updated 5 years ago
• nccgroup / LoggerPlusPlus
  Advanced Burp Suite Logging Extension
  ☆689Updated last year
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆318Updated 2 years ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆452Updated last week
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆265Updated 4 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆416Updated 2 years ago
• vmware-archive / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆563Updated 6 months ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆550Updated 8 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆459Updated 6 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆336Updated last year
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆417Updated 2 months ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆226Updated last year
• PortSwigger / xss-validator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆92Updated 3 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆304Updated 5 years ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆708Updated 9 months ago
• ONsec-Lab / scripts
  Utils
  ☆274Updated 10 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆325Updated 4 years ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆327Updated 3 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆564Updated 2 years ago
• PortSwigger / collaborator-everywhere
  A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…
  ☆441Updated 9 months ago
• bcoles / ssrf_proxy
  SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.
  ☆478Updated 8 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆261Updated 3 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 3 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆246Updated 3 years ago
• SecurityInnovation / AuthMatrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆638Updated last year
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆366Updated 2 years ago
• h3xstream / burp-retire-js
  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.
  ☆210Updated last year
• orangetw / Tiny-URL-Fuzzer
  A tiny and cute URL fuzzer
  ☆402Updated 3 years ago