akto-api-security / akto
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
☆1,256Updated this week
Alternatives and similar repositories for akto:
Users that are interested in akto are comparing it to the libraries listed below
- Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.☆935Updated last month
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan☆859Updated last month
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,095Updated this week
- An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for …☆1,214Updated 9 months ago
- An open source threat modeling tool from OWASP☆1,083Updated this week
- Pen Test Report Generation and Assessment Collaboration☆516Updated last month
- A community-powered collection of all known bug bounty platforms, vulnerability disclosure platforms, and crowdsourced security platforms…☆716Updated 2 weeks ago
- completely ridiculous API (crAPI)☆1,225Updated 2 weeks ago
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆981Updated 5 months ago
- Vulnerable app with examples showing how to not use secrets☆1,299Updated this week
- Asset inventory of over 800 public bug bounty programs.☆1,360Updated 2 months ago
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆708Updated 2 weeks ago
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆288Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆634Updated last week
- Metlo is an open-source API security platform.☆1,641Updated 11 months ago
- A list of open source web security scanners☆1,076Updated last month
- GitHub Actions Pipeline Enumeration and Attack Tool☆631Updated 2 weeks ago
- The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The …☆624Updated 5 months ago
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆635Updated 3 weeks ago
- An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…☆700Updated last month
- Security Auditor Utility for GraphQL APIs☆450Updated 2 months ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆166Updated this week
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆572Updated last week
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆516Updated 2 months ago
- Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...☆569Updated this week
- Create your own vulnerable by design AWS penetration testing playground☆368Updated this week
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆469Updated 6 months ago
- 🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the c…☆212Updated last year
- 🚀 Policy driven vetting of open source packages with malicious code analysis☆341Updated this week
- Vulnerability Scan with Nuclei☆253Updated 5 months ago