dsopas / MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
☆823Updated last month
Related projects ⓘ
Alternatives and complementary repositories for MindAPI
- A wordlist of API names for web application assessments☆760Updated last year
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,253Updated 4 months ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API re…☆455Updated last month
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆1,819Updated 10 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,421Updated 5 months ago
- Golang client for querying SecurityTrails API data☆539Updated last year
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…☆935Updated 4 months ago
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,062Updated 3 months ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,218Updated 2 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆615Updated this week
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆944Updated 2 years ago
- Awesome cloud enumerator☆894Updated 3 months ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,680Updated 6 months ago
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,204Updated 4 months ago
- ☆354Updated 2 years ago
- Go client to communicate with Chaos DB API.☆641Updated this week
- A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomain…☆829Updated last year
- Accept URLs on stdin, replace all query string values with a user-supplied value☆767Updated last year
- ☆523Updated 3 years ago
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,225Updated 3 years ago
- Community curated list of public bug bounty and responsible disclosure programs.☆1,051Updated this week
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆876Updated 5 months ago
- ☆1,177Updated 2 years ago
- Contextual Content Discovery Tool☆2,655Updated 6 months ago
- Asset inventory of over 800 public bug bounty programs.☆1,268Updated last week
- Automated & Manual Wordlists provided by Assetnote☆1,325Updated 3 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆804Updated 2 years ago
- The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…☆448Updated 3 weeks ago
- Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!☆1,026Updated last month
- The Swiss Army knife for automated Web Application Testing☆2,166Updated 6 months ago