cerberauth / vulnapiLinks
API Security Vulnerability Scanner designed to help you secure your APIs.
☆224Updated last week
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below
Sorting:
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆234Updated 10 months ago
- Web Security Scanner☆367Updated last month
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆238Updated last year
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆348Updated this week
- The Most Advanced Client-Side Prototype Pollution Scanner☆243Updated last week
- The Internets #1 Subdomain Takeover Tool☆287Updated 6 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆397Updated 7 months ago
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆462Updated last year
- hauditor is a tool designed to analyze the security headers returned by a web page.☆177Updated last year
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆850Updated last week
- JWT Auditor – Analyze, break, and understand your tokens like a pro.☆303Updated 4 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆163Updated last year
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆386Updated last month
- An uber fast and simple subdomain enumeration tool using DNS and web requests with support for detecting wildcard DNS records.☆174Updated last year
- ☆219Updated last year
- Community curated list of search queries for various products across multiple search engines.☆337Updated this week
- API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).☆226Updated 8 months ago
- A lightweight GPT model, trained to discover subdomains.☆327Updated 3 weeks ago
- Search for sensitive data in Postman public library.☆216Updated 3 months ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆355Updated 8 months ago
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆157Updated 2 weeks ago
- A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.☆460Updated last week
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms (like Hackerone/Bugcro…☆66Updated this week
- Proviesec Fuzz Scanner - dir/path web scanner☆102Updated 11 months ago
- Gourlex is a simple tool that can be used to extract URLs and paths from web pages.☆243Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆434Updated 3 weeks ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆155Updated 3 months ago
- A streamlined tool for discovering private TLDs for security research.☆229Updated last week
- The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The …☆655Updated 2 months ago
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆430Updated last week