Fuzzapi/fuzzapi

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Fuzzapi/fuzzapi)

Fuzzapi / fuzzapi

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

☆667

Alternatives and similar repositories for fuzzapi

Users that are interested in fuzzapi are comparing it to the libraries listed below

Sorting:

Fuzzapi / API-fuzzer
View on GitHub
API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
☆407Jul 16, 2017Updated 8 years ago
pathetiq / BurpSmartBuster
View on GitHub
A Burp Suite content discovery plugin that add the smart into the Buster!
☆378Oct 12, 2020Updated 5 years ago
flipkart-incubator / Astra
View on GitHub
Automated Security Testing For REST API's
☆2,644Jun 5, 2024Updated last year
GoSecure / csp-auditor
View on GitHub
Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
☆141Apr 29, 2020Updated 5 years ago
siberas / watobo
View on GitHub
☆90Aug 29, 2025Updated 6 months ago
ffleming / timing_attack
View on GitHub
Perform timing attacks against web applications
☆126Oct 13, 2019Updated 6 years ago
vulnex / Tintorera
View on GitHub
Source Code Intelligence
☆30Aug 21, 2017Updated 8 years ago
ant4g0nist / Susanoo
View on GitHub
A REST API security testing framework.
☆327Dec 4, 2021Updated 4 years ago
maK- / parameth
View on GitHub
This tool can be used to brute discover GET and POST parameters
☆1,395Aug 24, 2019Updated 6 years ago
bugcrowd / HUNT
View on GitHub
☆2,319Dec 8, 2023Updated 2 years ago
antojoseph / diff-droid
View on GitHub
Various Scripts for Mobile Pen-testing with Frida
☆75Jun 14, 2016Updated 9 years ago
nahamsec / JSParser
View on GitHub
☆831Nov 13, 2023Updated 2 years ago
VirtueSecurity / aws-extender
View on GitHub
AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
☆256Feb 23, 2022Updated 4 years ago
xssninja / Alexa-Hacker-Mode
View on GitHub
Node JS code for a set of Alexa voice skills designed to assist hackers and developers with common tasks
☆56Mar 6, 2019Updated 7 years ago
appsecco / bugcrowd-levelup-subdomain-enumeration
View on GitHub
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
☆628Feb 5, 2019Updated 7 years ago
cujanovic / SSRF-Testing
View on GitHub
SSRF (Server Side Request Forgery) testing resources
☆2,483Oct 12, 2024Updated last year
jzadeh / aktaion
View on GitHub
Aktaion: Open Source ML tool and data samples for Exploit and Phishing Research
☆143Mar 26, 2019Updated 6 years ago
summitt / Nope-Proxy
View on GitHub
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
☆1,656May 25, 2024Updated last year
smxlabs / gibbersense
View on GitHub
Extract Sense out of Gibberish stuff
☆81May 11, 2017Updated 8 years ago
nccgroup / wssip
View on GitHub
Application for capturing, modifying and sending custom WebSocket data from client to server and vice versa.
☆451Dec 8, 2022Updated 3 years ago
epinna / tplmap
View on GitHub
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
☆4,125Apr 21, 2024Updated last year
1N3 / IntruderPayloads
View on GitHub
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
☆3,904Sep 27, 2021Updated 4 years ago
BuffaloWill / oxml_xxe
View on GitHub
A tool for embedding XXE/XML exploits into different filetypes
☆1,135Dec 16, 2024Updated last year
federicodotta / HandyCollaborator
View on GitHub
Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
☆104Jun 1, 2018Updated 7 years ago
0xsauby / yasuo
View on GitHub
A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
☆573Dec 9, 2017Updated 8 years ago
vulnersCom / burp-vulners-scanner
View on GitHub
Vulnerability scanner based on vulners.com search API
☆887Oct 1, 2025Updated 5 months ago
michenriksen / aquatone
View on GitHub
A Tool for Domain Flyovers
☆5,912May 22, 2022Updated 3 years ago
owtf / owtf
View on GitHub
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
☆1,929Updated this week
jobertabma / virtual-host-discovery
View on GitHub
A script to enumerate virtual hosts on a server.
☆690Dec 28, 2017Updated 8 years ago
1ultimat3 / BadIntent
View on GitHub
Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite
☆323Aug 20, 2017Updated 8 years ago
anshumanbh / kubebot
View on GitHub
A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform
☆166Sep 14, 2024Updated last year
GerbenJavado / LinkFinder
View on GitHub
A python script that finds endpoints in JavaScript files
☆4,300Apr 13, 2024Updated last year
jordanpotti / AWSBucketDump
View on GitHub
Security Tool to Look For Interesting Files in S3 Buckets
☆1,458Apr 10, 2024Updated last year
jobertabma / ground-control
View on GitHub
A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
☆549Jun 12, 2017Updated 8 years ago
gitaziabari / Yalda
View on GitHub
☆11Apr 28, 2017Updated 8 years ago
jobertabma / relative-url-extractor
View on GitHub
A small tool that extracts relative URLs from a file.
☆768Sep 23, 2020Updated 5 years ago
YalcinYolalan / WSSAT
View on GitHub
WEB SERVICE SECURITY ASSESSMENT TOOL
☆390Sep 24, 2021Updated 4 years ago
enjoiz / XXEinjector
View on GitHub
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
☆1,721Dec 1, 2024Updated last year
EdOverflow / megplus
View on GitHub
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
☆305Oct 14, 2018Updated 7 years ago