cerberauth / vulnapiLinks
API Security Vulnerability Scanner designed to help you secure your APIs.
☆219Updated this week
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below
Sorting:
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆234Updated 9 months ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆236Updated last year
- The Most Advanced Client-Side Prototype Pollution Scanner☆241Updated 3 weeks ago
- hauditor is a tool designed to analyze the security headers returned by a web page.☆176Updated last year
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆461Updated last year
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆387Updated 6 months ago
- The Internets #1 Subdomain Takeover Tool☆285Updated 5 months ago
- Web Security Scanner☆341Updated this week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆837Updated this week
- ☆218Updated last year
- JWT Auditor – Analyze, break, and understand your tokens like a pro.☆297Updated 3 months ago
- Community curated list of search queries for various products across multiple search engines.☆308Updated last week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆432Updated 9 months ago
- Automated web vulnerability scanning with LLM agents☆362Updated 4 months ago
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆163Updated 2 months ago
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆344Updated this week
- A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.☆454Updated 2 weeks ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆375Updated 2 months ago
- Search for sensitive data in Postman public library.☆216Updated 2 months ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆130Updated 9 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆227Updated 5 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆163Updated 11 months ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆347Updated 7 months ago
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms (like Hackerone/Bugcro…☆65Updated this week
- Attack surface detector that identifies endpoints by static analysis☆863Updated last week
- A lightweight GPT model, trained to discover subdomains.☆308Updated last week
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆176Updated 3 weeks ago
- The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The …☆653Updated last month
- An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting wildcard DNS records.☆174Updated last year
- ☆237Updated last year