cerberauth / vulnapiLinks
API Security Vulnerability Scanner designed to help you secure your APIs.
☆143Updated this week
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below
Sorting:
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆226Updated 3 months ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆223Updated 3 weeks ago
- ☆204Updated last year
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆159Updated 6 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆356Updated 3 weeks ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆315Updated 2 months ago
- Search for sensitive data in Postman public library.☆205Updated 5 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆119Updated 2 months ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆229Updated 10 months ago
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆139Updated last month
- Proviesec Fuzz Scanner - dir/path web scanner☆101Updated 5 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆188Updated 2 weeks ago
- A streamlined tool for discovering private TLDs for security research.☆207Updated this week
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆159Updated 6 months ago
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.☆91Updated last month
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆655Updated last month
- A Powerful Network Reconnaissance Tool for Security Professionals☆100Updated 5 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆169Updated 4 months ago
- AI-powered ffuf wrapper☆492Updated 6 months ago
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆75Updated 3 months ago
- Web Security Scanner☆317Updated last year
- hauditor is a tool designed to analyze the security headers returned by a web page.☆172Updated 10 months ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆133Updated last month
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆122Updated 4 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆252Updated 3 weeks ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty in WebSocket☆75Updated last month
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated last month
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆92Updated 3 months ago
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆316Updated this week
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆417Updated 4 months ago