A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos engineering testing and stateful, Swagger fuzzing.
☆227May 9, 2024Updated last year
Alternatives and similar repositories for fuzz-lightyear
Users that are interested in fuzz-lightyear are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,875Feb 13, 2026Updated last month
- Send notifications on different channels such as Slack, Telegram, Discord etc.☆39Jan 12, 2026Updated 2 months ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆110Dec 6, 2022Updated 3 years ago
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆466Mar 6, 2025Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Mar 9, 2025Updated last year
- A tool to list the SSH clone URLs for all GitHub repos for a given user☆14Feb 7, 2016Updated 10 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆63Jan 17, 2022Updated 4 years ago
- A repository teaching bss/data segment exploitation techniques.☆13Aug 11, 2019Updated 6 years ago
- A very vulnerable implementation of a GraphQL API.☆61Nov 12, 2021Updated 4 years ago
- ☆56Jun 17, 2020Updated 5 years ago
- QilingLab challenge writeup☆22Sep 25, 2021Updated 4 years ago
- Scripts to help with different ffuf tasks and workflows☆225Dec 24, 2023Updated 2 years ago
- A very vulnerable implementation of a GraphQL API.☆17Mar 13, 2026Updated last week
- ☆69Jul 18, 2025Updated 8 months ago
- Tool for CVE-2018-16323☆82Jan 17, 2019Updated 7 years ago
- Search exposed EBS volumes for secrets☆302Apr 24, 2023Updated 2 years ago
- A tool for analyzing the attack surface of an application☆19Mar 5, 2025Updated last year
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,744Feb 16, 2026Updated last month
- ☆119Apr 14, 2020Updated 5 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆303Feb 12, 2023Updated 3 years ago
- A highly configurable Framework for easy automated web scanning☆382Jul 13, 2020Updated 5 years ago
- Rust bot that works on IRC and Slack for tracking karma (upvotes/downvotes...)☆18Mar 13, 2025Updated last year
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆104Feb 11, 2019Updated 7 years ago
- ☆126Sep 2, 2019Updated 6 years ago
- Piper Burp Suite Extender plugin☆130Jan 14, 2026Updated 2 months ago
- A horizontal and vertical web content enumerator☆52Aug 15, 2018Updated 7 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆557Mar 6, 2023Updated 3 years ago
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments☆250Oct 15, 2019Updated 6 years ago
- Monitoring GitHub for sensitive data shared publicly☆65Dec 20, 2021Updated 4 years ago
- Hsuan-Fuzz: REST API Fuzzing by Coverage Level Guided Blackbox Testing☆29May 14, 2022Updated 3 years ago
- Research on GraphQL from an AppSec point of view.☆418May 24, 2023Updated 2 years ago
- A tool to scan for .DS_Store files on webservers☆35Mar 28, 2021Updated 4 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Nov 2, 2020Updated 5 years ago
- goSDL☆522Nov 3, 2025Updated 4 months ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆356Oct 14, 2020Updated 5 years ago
- Dashboard/API + DNS/HTTP Servers to identify Out of Band Resolution in Payloads☆38Jun 10, 2021Updated 4 years ago
- FockCache - Minimalized Test Cache Poisoning☆111Feb 3, 2020Updated 6 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆23Nov 20, 2022Updated 3 years ago