dsopas / MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
☆840Updated 2 months ago
Alternatives and similar repositories for MindAPI:
Users that are interested in MindAPI are comparing it to the libraries listed below
- ☆523Updated 3 years ago
- ☆1,001Updated 3 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,249Updated 4 years ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,287Updated 7 months ago
- XSS payloads designed to turn alert(1) into P1☆1,360Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆971Updated 10 months ago
- Golang client for querying SecurityTrails API data☆552Updated last year
- ☆384Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,345Updated this week
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆972Updated 3 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆623Updated 5 months ago
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,314Updated last week
- A wordlist of API names for web application assessments☆807Updated 2 months ago
- Burp Suite Certified Practitioner Exam Study☆1,026Updated last month
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆981Updated 5 months ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆958Updated 3 years ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,050Updated last week
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆865Updated last year
- ☆1,077Updated last week
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,530Updated 11 months ago
- Community curated list of public bug bounty and responsible disclosure programs.☆1,131Updated 3 weeks ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆466Updated 6 months ago
- Making Favicon.ico based Recon Great again !☆1,183Updated last year
- Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,118Updated last week
- Accept URLs on stdin, replace all query string values with a user-supplied value☆810Updated 2 years ago
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆869Updated last year
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,140Updated 8 months ago
- A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.☆899Updated this week
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆723Updated 2 years ago
- A tool for adding new lines to files, skipping duplicates☆1,496Updated last year