API Security Vulnerability Scanner designed to help you secure your APIs.
☆243Feb 22, 2026Updated last week
Alternatives and similar repositories for vulnapi
Users that are interested in vulnapi are comparing it to the libraries listed below
Sorting:
- Identify hardcoded secrets in static structured text (version 2)☆98Feb 5, 2025Updated last year
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.☆79Sep 1, 2025Updated 6 months ago
- ☆15May 6, 2023Updated 2 years ago
- A tool to audit Erlang & Elixir dependencies, to make sure your ✨ gleam projects really sparkle!☆23Jan 5, 2026Updated last month
- Steganography Tool for JPG Images☆64Feb 23, 2026Updated last week
- PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.☆68Updated this week
- A python library to interact with Pwndoc instances for pentest reports generation☆22May 19, 2025Updated 9 months ago
- Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom te…☆1,449Updated this week
- Quickly query the AWS IP Ranges☆85Updated this week
- 🖥️ Windows 🚀 A Windows tool for emergency privacy: instantly deletes sensitive data and active logins to protect my information during …☆54Jan 26, 2026Updated last month
- Mobile Reconnaissance Framework is a powerful, lightweight and platform-independent offensive mobile security tool designed to help hacke…☆79Feb 7, 2026Updated 3 weeks ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆157Updated this week
- A list of open source web security scanners☆1,288Apr 29, 2025Updated 10 months ago
- OXO is a security scanning orchestrator for the modern age.☆561Feb 23, 2026Updated last week
- PermCheck is a little tool that checks if the files in a PHP project have the executable bit set properly.☆11Updated this week
- ADE: automates Active Directory enumeration for labs (Hack The Box, Hack Smarter, TryHackMe, Proving Grounds) and exam prep (OSCP, CPTS).☆28Jan 19, 2026Updated last month
- A cybersecurity tool designed to safeguard against IDN Homograph Attacks☆45Aug 5, 2025Updated 6 months ago
- A controlled environment for demonstrating and understanding buffer overflow vulnerabilities in web applications. This project is designe…☆25Jan 27, 2025Updated last year
- 😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials☆99Mar 12, 2024Updated last year
- Unauthenticated enumeration of AWS IAM Roles.☆26Sep 7, 2025Updated 5 months ago
- OpenShield is a new generation security layer for AI models☆84Feb 2, 2026Updated 3 weeks ago
- Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.☆1,105Feb 23, 2026Updated last week
- Link Dumper is a powerful Python-based web crawler designed for pentesting and reconnaissance.☆55Dec 15, 2025Updated 2 months ago
- Mattermost is an open source platform for secure collaboration across the entire software development lifecycle..☆27Oct 20, 2025Updated 4 months ago
- Username recon OSINT. Accurate hits! New sites to check, Simple and powerful tool. Goverments use this tool or similar tools built in dif…☆18Feb 19, 2026Updated last week
- Cloud security documents and tools to assist with conducting risk assessments that conform to the ICS62443 guidelines☆11Apr 24, 2023Updated 2 years ago
- There is my vuln POC and EXP. Some of POC were collected, most of POC and EXP were written by myself.☆13May 28, 2022Updated 3 years ago
- Fast and easy to use CLI-based file encryption program 📦☆13Oct 12, 2025Updated 4 months ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Jan 4, 2026Updated last month
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆723Updated this week
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆352Feb 21, 2026Updated last week
- Ebyte-Go-Morpher is a Go program that parses, analyzes, and rewrites Go source code to apply multiple layers of obfuscation. It operates …☆122Jul 19, 2025Updated 7 months ago
- BlueSky OSINT Tool☆14Dec 10, 2024Updated last year
- Exploit Proof-of-Concept code for XAMPP v3.3.0 — '.ini' Buffer Overflow (Unicode + SEH)☆14Nov 1, 2023Updated 2 years ago
- SBOM Move - Automate build and transfer of SBOMs across systems☆25Feb 23, 2026Updated last week
- AWS honey token manager☆89Aug 1, 2024Updated last year
- Grabs data from IVRE and brings it into Obsidian notes☆36Updated this week
- This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sub…☆87Feb 14, 2026Updated 2 weeks ago
- Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.☆159Feb 17, 2026Updated last week