π Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the community. Next 30 days we will post test tutorials here.
β221May 22, 2023Updated 2 years ago
Alternatives and similar repositories for 30-API-security-tests
Users that are interested in 30-API-security-tests are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Proactive, Open source API security β API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom teβ¦β1,461Updated this week
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issuesβ375Jul 25, 2023Updated 2 years ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerβ384May 19, 2023Updated 2 years ago
- β15May 6, 2023Updated 2 years ago
- Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilitiesβ40Apr 8, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways β’ AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Authorization-Nuclei-Templatesβ39Sep 16, 2024Updated last year
- Mind-Maps of Several Thingsβ2,635Jun 29, 2023Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlistβ1,507Jan 8, 2026Updated 3 months ago
- A listing of the most common vuln that you can link in your PoCsβ28Oct 27, 2018Updated 7 years ago
- The motive to build this repo is to help beginner to start learn Android Pentesting by providing a roadmap.β438Jul 11, 2022Updated 3 years ago
- A Burp Extension that makes it easier to view all script code on a Response.β17Nov 12, 2023Updated 2 years ago
- A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanningβ517Jul 5, 2023Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.β361May 5, 2022Updated 3 years ago
- i will upload more templates here to share with the comunity.β569Apr 17, 2024Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- β29Dec 13, 2023Updated 2 years ago
- jsleak is a tool to find secret , paths or links in the source code during the recon.β584Sep 25, 2025Updated 6 months ago
- Stay on the beat with SubHound - receive notifications for new subdomains on Telegram and Discord! πΆπ΅β17Jun 4, 2023Updated 2 years ago
- A OWASP Based Checklist With 80+ Test Casesβ169Oct 26, 2022Updated 3 years ago
- Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests wβ¦β634Apr 5, 2026Updated last week
- β₯β191Sep 7, 2025Updated 7 months ago
- β251May 25, 2021Updated 4 years ago
- β20Apr 5, 2023Updated 3 years ago
- This challenge is Inon Shkedy's 31 days API Security Tips.β2,231Apr 20, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLsβ¦β12May 28, 2023Updated 2 years ago
- A cheat sheet that contains advanced queries for SQL Injection of all types.β3,170May 13, 2023Updated 2 years ago
- A path-normalization pentesting tool.β153Apr 2, 2026Updated 2 weeks ago
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitterβ3,464Feb 10, 2024Updated 2 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.β25Apr 19, 2023Updated 2 years ago
- β152Nov 27, 2021Updated 4 years ago
- β11Jan 24, 2023Updated 3 years ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.β97Jan 2, 2025Updated last year
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communitβ¦β3,740Nov 23, 2025Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,812May 22, 2024Updated last year
- β18Apr 3, 2023Updated 3 years ago
- β1,117Jul 26, 2023Updated 2 years ago
- Real-world infosec wordlists, updated regularlyβ1,736Updated this week
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokensβ¦β5,301Mar 13, 2026Updated last month
- Azure and AWS Attacksβ1,116Nov 25, 2022Updated 3 years ago
- β47Apr 18, 2023Updated 2 years ago