cerberauth / vulnapi
API Security Vulnerability Scanner designed to help you secure your APIs.
☆135Updated last week
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below
Sorting:
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆158Updated 5 months ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆221Updated 3 weeks ago
- Web Security Scanner☆316Updated 11 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆226Updated 3 months ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆225Updated 9 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆158Updated 6 months ago
- Proviesec Fuzz Scanner - dir/path web scanner☆101Updated 4 months ago
- ☆201Updated 11 months ago
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆91Updated 2 months ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆314Updated last month
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆117Updated last month
- Search for sensitive data in Postman public library.☆204Updated 4 months ago
- hauditor is a tool designed to analyze the security headers returned by a web page.☆171Updated 10 months ago
- A streamlined tool for discovering private TLDs for security research.☆196Updated last week
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.☆82Updated 3 weeks ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆169Updated 3 months ago
- Identify hardcoded secrets in static structured text (version 2)☆91Updated 3 months ago
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆138Updated 2 weeks ago
- This script Crawl the website and find the urls that contains html forms.☆70Updated 10 months ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆130Updated 3 weeks ago
- Extracts URLs from OSINT Archives for Security Insights☆105Updated 3 weeks ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆351Updated 5 months ago
- A Powerful Network Reconnaissance Tool for Security Professionals☆100Updated 4 months ago
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.☆218Updated 8 months ago
- ☆230Updated 10 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆304Updated 5 months ago
- Automated web vulnerability scanning with LLM agents☆310Updated 2 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆411Updated 3 months ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆120Updated 3 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated 3 weeks ago