KissPeter / APIFuzzer
Fuzz test your application using your OpenAPI or Swagger API definition without coding
☆442Updated 3 weeks ago
Alternatives and similar repositories for APIFuzzer:
Users that are interested in APIFuzzer are comparing it to the libraries listed below
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆220Updated 10 months ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆111Updated 2 years ago
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆263Updated 3 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆470Updated last year
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆392Updated 7 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆717Updated 7 months ago
- ☆184Updated 4 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆880Updated this week
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…�☆2,698Updated 2 weeks ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations☆302Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆112Updated 3 weeks ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆836Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆248Updated 4 months ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆477Updated 3 months ago
- Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!☆557Updated last year
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan☆853Updated last week
- Security Auditor Utility for GraphQL APIs☆436Updated last month
- Vulnerability Scan with Nuclei☆250Updated 4 months ago
- A comprehensive list of software composition analysis tools.☆141Updated 9 months ago
- Semgrep queries developed by Trail of Bits.☆391Updated 3 weeks ago
- GraphQL automated security testing toolkit☆313Updated last year
- PyJFuzz - Python JSON Fuzzer☆377Updated last year
- Generic SAST Library☆130Updated 4 months ago
- Open Source Vulnerability schema.☆197Updated last week
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆374Updated 3 years ago
- Automated API security testing☆85Updated 7 months ago
- Coverage-based fuzzer for python applications☆235Updated 2 years ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,601Updated last week
- Black box fuzzer for web applications☆426Updated 8 months ago
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆528Updated 2 years ago