akto-api-security / tests-libraryLinks
Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
☆39Updated this week
Alternatives and similar repositories for tests-library
Users that are interested in tests-library are comparing it to the libraries listed below
Sorting:
- Performing automated scan using Burp Suite Pro & Vmware Burp Rest API☆50Updated 2 years ago
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated last year
- 🔭 Collection of regexp pattern for security passive scanning☆115Updated 2 years ago
- Execute Trickest workflows right from your terminal☆94Updated last month
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year
- List all public repositories for (valid) GitHub usernames☆76Updated last year
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆44Updated last year
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆53Updated last year
- Bcheck scripts for Burp☆28Updated last year
- Monitoring the Cloud Landscape☆87Updated this week
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.☆60Updated 2 years ago
- vīlicus is a bug bounty api dashboard☆41Updated 2 years ago
- A list of threat sinks used in the manual security source code review for application security☆73Updated 2 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated last year
- Resolvers updated daily for reconftw☆47Updated 2 years ago
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet☆58Updated 10 months ago
- Running nuclei Continuously☆57Updated 2 years ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆58Updated 4 years ago
- Security Advisories☆34Updated 2 months ago
- Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own☆75Updated last year
- IIS shortname scanner + bruteforce☆53Updated last year
- Tool for testing reflections in the HTTP responses☆60Updated 2 years ago
- A set of open-source community scripts☆64Updated 11 months ago
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆113Updated 3 years ago
- ☆57Updated last year
- Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations☆78Updated last week
- goverview - Get an overview of the list of URLs☆142Updated 2 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆59Updated 2 years ago
- OWASP ASVS Security Evaluation Templates with Nuclei☆41Updated last week
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆118Updated 2 years ago