cyprosecurity / API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
☆283Updated 3 years ago
Alternatives and similar repositories for API-SecurityEmpire:
Users that are interested in API-SecurityEmpire are comparing it to the libraries listed below
- ☆318Updated 2 months ago
- This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.☆221Updated 2 years ago
- Fast and customizable vulnerability scanner For JIRA written in Python☆317Updated 2 months ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆265Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.☆349Updated 2 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆271Updated last year
- ☆518Updated last year
- Black box fuzzer for web applications☆425Updated 8 months ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆416Updated 5 months ago
- Awesome information for WebSockets security research☆264Updated 3 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆63Updated 10 months ago
- Full Nuclei automation script with logic explanation.☆243Updated 3 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆626Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆258Updated 2 weeks ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆607Updated last week
- Golang client for querying SecurityTrails API data☆545Updated last year
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆845Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated 2 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆466Updated 2 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆963Updated 2 months ago
- Arsenal is a Simple shell script (Bash) used to install tools and requirements for Bug Bounty☆274Updated 9 months ago
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆346Updated last year
- Automated learning of regexes for DNS discovery☆364Updated 2 years ago
- Vulnerability Scan with Nuclei☆250Updated 4 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆182Updated 2 years ago
- Zero-dollar attack surface management tool☆276Updated 11 months ago
- Build your own reconnaissance system with Osmedeus Next Generation☆184Updated last month
- This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…☆515Updated 3 months ago
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆325Updated 3 weeks ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆367Updated this week