Alternatives and similar repositories for automatic-api-attack-tool:

Users that are interested in automatic-api-attack-tool are comparing it to the libraries listed below

• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆400Updated 6 months ago
• nccgroup / BurpSuiteHTTPSmuggler
  A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
  ☆718Updated 5 years ago
• epi052 / recon-pipeline
  An automated target reconnaissance pipeline.
  ☆430Updated last year
• capt-meelo / LazyRecon
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆442Updated 4 years ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆334Updated 4 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆398Updated last year
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆331Updated 4 years ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆639Updated 6 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆265Updated last year
• anshumanbh / tko-subs
  A tool that can help detect and takeover subdomains with dead DNS records
  ☆750Updated 4 years ago
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆413Updated 4 years ago
• vysecurity / DomLink
  A tool to link a domain with registered organisation names and emails, to other domains.
  ☆833Updated 8 months ago
• PortSwigger / http-request-smuggler
  ☆967Updated 3 weeks ago
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆705Updated last year
• mhmdiaa / second-order
  Second-order subdomain takeover scanner
  ☆384Updated last year
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆371Updated 3 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆524Updated 6 years ago
• reconness / reconness
  ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on sc…
  ☆317Updated 3 months ago
• root4loot / rescope
  Bugbounty scope tool
  ☆323Updated last month
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆619Updated 11 months ago
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆321Updated 2 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆349Updated 4 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆448Updated 5 years ago
• Cgboal / SonarSearch
  A rapid API for the Project Sonar dataset
  ☆644Updated last year
• nccgroup / AutoRepeater
  Automated HTTP Request Repeating With Burp Suite
  ☆861Updated 3 years ago
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆302Updated 4 years ago
• codingo / DNSCewl
  A DNS Bruteforcing Wordlist Generator
  ☆350Updated last year
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆297Updated last year
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆396Updated 4 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆172Updated 2 years ago