cyprosecurity / API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
☆282Updated 2 years ago
Alternatives and similar repositories for API-SecurityEmpire:
Users that are interested in API-SecurityEmpire are comparing it to the libraries listed below
- This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.☆222Updated 2 years ago
- ☆316Updated last month
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆265Updated last year
- Fast and customizable vulnerability scanner For JIRA written in Python☆318Updated last month
- Automated learning of regexes for DNS discovery☆363Updated 2 years ago
- 🚀 Join us for 30days of daily API security tests. #30days30tests We've spent last 120days building amazing API security tests for the c…☆210Updated last year
- Watch the latest awesome security talks around the globe☆270Updated 2 years ago
- Damn Vulnerable Cloud Application☆191Updated 6 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆56Updated 9 months ago
- Smart context-based SSRF vulnerability scanner.☆347Updated 2 years ago
- Top disclosed reports from HackerOne☆148Updated 3 years ago
- ☆214Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆342Updated last year
- ☆516Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated last year
- Full Nuclei automation script with logic explanation.☆244Updated 2 years ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆437Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆348Updated this week
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆622Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆585Updated 3 months ago
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆320Updated 3 months ago
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆844Updated last year
- Awesome information for WebSockets security research☆260Updated 3 years ago
- A OWASP Based Checklist With 80+ Test Cases☆139Updated 2 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆268Updated last year
- Build your own reconnaissance system with Osmedeus Next Generation☆183Updated 2 weeks ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆256Updated 7 months ago
- Web Application Security Testing Tools☆238Updated 11 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆373Updated 4 months ago
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆436Updated this week