π Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.
β221May 22, 2023Updated 3 years ago
Alternatives and similar repositories for 30-API-security-tests
Users that are interested in 30-API-security-tests are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Proactive, Open source API security β API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom teβ¦β1,478Updated this week
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issuesβ376Jul 25, 2023Updated 2 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerβ384May 19, 2023Updated 3 years ago
- β15May 6, 2023Updated 3 years ago
- Authorization-Nuclei-Templatesβ39Sep 16, 2024Updated last year
- End-to-end encrypted cloud storage - Proton Drive β’ AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Mind-Maps of Several Thingsβ2,704Jun 29, 2023Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,511Jan 8, 2026Updated 4 months ago
- A listing of the most common vuln that you can link in your PoCsβ28Oct 27, 2018Updated 7 years ago
- The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.β437Jul 11, 2022Updated 3 years ago
- A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanningβ518Jul 5, 2023Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.β361May 5, 2022Updated 4 years ago
- A Burp Extension that makes it easier to view all script code on a Response.β17Nov 12, 2023Updated 2 years ago
- i will upload more templates here to share with the comunity.β571Apr 17, 2024Updated 2 years ago
- β29Dec 13, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- jsleak is a tool to find secret , paths or links in the source code during the recon.β588Sep 25, 2025Updated 8 months ago
- Stay on the beat with SubHound - receive notifications for new subdomains on Telegram and Discord! πΆπ΅β17Jun 4, 2023Updated 2 years ago
- A OWASP Based Checklist With 80+ Test Casesβ199Oct 26, 2022Updated 3 years ago
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests wβ¦β635May 17, 2026Updated last week
- β₯β208Sep 7, 2025Updated 8 months ago
- β250May 25, 2021Updated 5 years ago
- β19Apr 5, 2023Updated 3 years ago
- This challenge is Inon Shkedy's 31 days API Security Tips.β2,235Apr 20, 2022Updated 4 years ago
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLsβ¦β12May 28, 2023Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A cheat sheet that contains advanced queries for SQL Injection of all types.β3,217May 13, 2023Updated 3 years ago
- A path-normalization pentesting tool.β154Apr 2, 2026Updated last month
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitterβ3,481Feb 10, 2024Updated 2 years ago
- β153Nov 27, 2021Updated 4 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.β25Apr 19, 2023Updated 3 years ago
- β11Jan 24, 2023Updated 3 years ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communitβ¦β3,802May 1, 2026Updated 3 weeks ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.β97Jan 2, 2025Updated last year
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,835May 22, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- β18Apr 3, 2023Updated 3 years ago
- β1,114Jul 26, 2023Updated 2 years ago
- Real-world infosec wordlists, updated regularlyβ1,752Updated this week
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokensβ¦β5,338Mar 13, 2026Updated 2 months ago
- Azure and AWS Attacksβ1,121Nov 25, 2022Updated 3 years ago
- β46Apr 18, 2023Updated 3 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one plβ¦β1,043Aug 23, 2025Updated 9 months ago