akto-api-security / 30-API-security-tests
š Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.
ā198Updated last year
Related projects: ā
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)ā267Updated 6 months ago
- Top disclosed reports from HackerOneā146Updated 3 years ago
- Fast and customizable vulnerability scanner For JIRA written in Pythonā318Updated 7 months ago
- Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.ā159Updated 5 months ago
- i will upload more templates here to share with the comunity.ā519Updated 5 months ago
- Tips and Tutorials for Bug Bounty and also Penetration Tests.ā110Updated last year
- My small collection of reports templates (This is a fork of orignal repo from https://github.com/gwen001/BB-datas)ā122Updated 10 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerā369Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable ā¦ā524Updated 9 months ago
- ā297Updated last year
- List of reporting templates I have used since I started doing BBH.ā226Updated this week
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.ā189Updated 3 weeks ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflowsā271Updated last year
- ā233Updated 3 years ago
- oneliner commands for bug bountiesā416Updated 2 years ago
- ā192Updated this week
- This Repositories contains list of One Liners with Descriptions and Installation requirementsā401Updated 4 months ago
- A collection oneliner scripts for bug bountyā167Updated 6 months ago
- Automatic Bug finder with buprsuiteā165Updated last year
- Finding XSS during reconā245Updated 2 years ago
- My Priv8 Nuclei Templatesā279Updated 4 months ago
- Useful "Match and Replace" burpsuite rulesā328Updated 11 months ago
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.ā206Updated this week
- Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bountyā263Updated 3 months ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)ā258Updated 11 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for cā¦ā371Updated last month
- Repository of Bug-Bounty Writeupsā231Updated this week
- Smart context-based SSRF vulnerability scanner.ā323Updated 2 years ago
- Cyber Security Notes, Methodology, Resources and Tipsā112Updated last week