imperva / automatic-api-attack-toolLinks
Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.
☆491Updated 2 years ago
Alternatives and similar repositories for automatic-api-attack-tool
Users that are interested in automatic-api-attack-tool are comparing it to the libraries listed below
Sorting:
- DOM XSS scanner for Single Page Applications☆417Updated 2 months ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆452Updated last week
- Security Testing Scripts for JWT☆327Updated 3 years ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆407Updated 8 years ago
- Repo for all the SKF Docker lab examples☆463Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆270Updated 2 years ago
- REST/JSON API to the Burp Suite security tool.☆563Updated 6 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆404Updated 4 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆261Updated 3 years ago
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆366Updated 2 years ago
- Second-order subdomain takeover scanner☆406Updated 5 months ago
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆416Updated 5 years ago
- A tool to hunt for credentials in github wild AKA git*hunt☆297Updated 3 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆661Updated 7 years ago
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆882Updated 11 months ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆712Updated 2 years ago
- An automated target reconnaissance pipeline.☆446Updated 2 years ago
- HTTP file upload scanner for Burp Proxy☆416Updated 2 years ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆669Updated 4 years ago
- Default signature for Jaeles Scanner☆327Updated 3 years ago
- Security tool (now AI powered 🤖) to find potential vulnerable Server Side Request Forgery (SSRF) parameters.☆353Updated last week
- Bugbounty scope tool☆332Updated 11 months ago
- Quickly Search Large DNS Datasets☆588Updated 5 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,027Updated 5 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆564Updated 2 years ago
- A simple SSRF-testing sheriff written in Go☆336Updated last year
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆325Updated last year
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆451Updated 5 years ago
- Finds unknown classes of injection vulnerabilities☆708Updated 9 months ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆553Updated 2 years ago