cerberauth / vulnapiLinks
API Security Vulnerability Scanner designed to help you secure your APIs.
☆236Updated this week
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below
Sorting:
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆235Updated last year
- The Internets #1 Subdomain Takeover Tool☆297Updated 8 months ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆243Updated last year
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆352Updated last week
- SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applic…☆465Updated last year
- The Most Advanced Client-Side Prototype Pollution Scanner☆244Updated this week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆898Updated 3 weeks ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆402Updated last month
- Web Security Scanner☆372Updated 2 months ago
- hauditor is a tool designed to analyze the security headers returned by a web page.☆176Updated last year
- ☆220Updated last year
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆131Updated last year
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆165Updated last year
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆393Updated 2 months ago
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆435Updated this week
- Community curated list of search queries for various products across multiple search engines.☆369Updated this week
- A streamlined tool for discovering private TLDs for security research.☆239Updated this week
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆363Updated 10 months ago
- API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).☆231Updated 2 weeks ago
- Search for sensitive data in Postman public library.☆214Updated 5 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆436Updated last month
- Gourlex is a simple tool that can be used to extract URLs and paths from web pages.☆245Updated last year
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆171Updated 3 weeks ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆160Updated 5 months ago
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆259Updated 4 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆382Updated last year
- Automated web vulnerability scanning with LLM agents☆446Updated 7 months ago
- ☆238Updated last year
- The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The …☆660Updated 4 months ago
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆159Updated 2 months ago