KissPeter / APIFuzzerLinks
Fuzz test your application using your OpenAPI or Swagger API definition without coding
☆465Updated 11 months ago
Alternatives and similar repositories for APIFuzzer
Users that are interested in APIFuzzer are comparing it to the libraries listed below
Sorting:
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆226Updated last year
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆111Updated 3 years ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,072Updated this week
- ☆226Updated last month
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,867Updated 3 weeks ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆260Updated last year
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆407Updated 8 years ago
- Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)☆846Updated last year
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆491Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆863Updated 2 years ago
- Simple fuzzer for OpenAPI 3 specification based APIs☆22Updated 2 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆775Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆135Updated this week
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆122Updated 2 years ago
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆265Updated 4 years ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆150Updated 5 years ago
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆98Updated last month
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆160Updated last year
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆519Updated 2 months ago
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆553Updated 3 years ago
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆404Updated 3 years ago
- Finding potential software vulnerabilities from git commit messages☆419Updated 2 years ago
- Collection of community-driven CodeQL query, library and extension packs☆203Updated last month
- Purposely vulnerable Java application to help lead secure coding workshops☆191Updated last year
- Proof of concept code for Datadog Security Labs referenced exploits.☆449Updated last month
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆165Updated 2 months ago
- Coverage-guided, in-process fuzzing for the JVM☆1,189Updated last week
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆212Updated 2 years ago
- Vulnerability Scan with Nuclei☆277Updated last week
- Coverage-based fuzzer for python applications☆237Updated 3 years ago