Fuzz test your application using your OpenAPI or Swagger API definition without coding
☆466Apr 1, 2026Updated last week
Alternatives and similar repositories for APIFuzzer
Users that are interested in APIFuzzer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆110Dec 6, 2022Updated 3 years ago
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,891Mar 18, 2026Updated 3 weeks ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆407Jul 16, 2017Updated 8 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆225Apr 2, 2026Updated last week
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆263Jan 13, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Automated Security Testing For REST API's☆2,648Jun 5, 2024Updated last year
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,354Apr 3, 2026Updated last week
- Fuzzing with the generated argument and environment variable☆10Jul 14, 2022Updated 3 years ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆45Mar 8, 2024Updated 2 years ago
- A fork and successor of the Sulley Fuzzing Framework☆2,326Mar 30, 2026Updated last week
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆491May 13, 2023Updated 2 years ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,740Nov 23, 2025Updated 4 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆281Sep 11, 2025Updated 7 months ago
- FuzzBuilderEx is a system to build seed corpus and fuzzing executables using the test framework automatically.☆14Sep 6, 2022Updated 3 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- The DevSecOps toolset for REST APIs☆277Jan 13, 2023Updated 3 years ago
- Repo for hosting rayder workflows☆63Aug 31, 2023Updated 2 years ago
- Framework for Automating Fuzzable Target Discovery with Static Analysis.☆549Feb 1, 2024Updated 2 years ago
- Generate wordlists for fuzzing API method names☆55Oct 16, 2020Updated 5 years ago
- Catch API bugs before your users do☆3,198Updated this week
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆665Feb 25, 2021Updated 5 years ago
- Effortlessly fuzz libraries with large API surfaces☆71Aug 18, 2021Updated 4 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆375Jul 25, 2023Updated 2 years ago
- Contextual Content Discovery Tool☆3,139Apr 29, 2024Updated last year
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Find alive host from dumped subdomains, huge domain list , alive subdomains☆26Mar 29, 2021Updated 5 years ago
- Identify vulnerabilities in your API's using the OpenAPI Security Scanner☆12Dec 6, 2018Updated 7 years ago
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆1,649Mar 11, 2024Updated 2 years ago
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Mar 11, 2025Updated last year
- Bring libfuzzer to Unicorn☆26Jan 23, 2022Updated 4 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,523Sep 4, 2025Updated 7 months ago
- ☆19Jan 24, 2023Updated 3 years ago
- Automate bug bounty recon using bash alias☆15Aug 6, 2024Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆91May 2, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Extract endpoints marked as disallow in robots files to generate wordlists.☆59Mar 2, 2022Updated 4 years ago
- Automatic fuzz targets generation for Golang packages☆55Nov 12, 2025Updated 5 months ago
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆823Jun 9, 2025Updated 10 months ago
- Takes a list of URLs and returns their HTTP response codes☆403Oct 17, 2023Updated 2 years ago
- ScanExp automates the scanning of any machine's open ports via the ip address and performs a brute force attack on ports 20, 21 for the F…☆26Oct 14, 2023Updated 2 years ago
- A Slack bot phishing framework for Red Teaming exercises☆166Apr 27, 2024Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆277Feb 11, 2021Updated 5 years ago