inonshk / 31-days-of-API-Security-TipsLinks
This challenge is Inon Shkedy's 31 days API Security Tips.
☆2,214Updated 3 years ago
Alternatives and similar repositories for 31-days-of-API-Security-Tips
Users that are interested in 31-days-of-API-Security-Tips are comparing it to the libraries listed below
Sorting:
- This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location☆1,328Updated 4 years ago
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,797Updated last year
- A collection of custom security tools for quick needs.☆3,245Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆3,286Updated 7 months ago
- A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me☆2,215Updated 10 months ago
- BBT - Bug Bounty Tools (examples💡)☆1,845Updated last year
- A Python program to scrape secrets from GitHub through usage of a large repository of dorks.☆2,438Updated last year
- A collection of awesome one-liner scripts especially for bug bounty tips.☆2,939Updated last year
- CORS Misconfiguration Scanner☆1,469Updated 3 years ago
- Penetration tests guide based on OWASP including test cases, resources and examples.☆2,690Updated 3 years ago
- ☆1,008Updated 3 years ago
- This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.☆1,673Updated 3 years ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,510Updated 6 months ago
- Notes about attacking Jenkins servers☆2,076Updated last year
- The Swiss Army knife for automated Web Application Testing☆2,290Updated last year
- ☆1,193Updated 3 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,019Updated last year
- Reverse proxies cheatsheet☆1,849Updated last year
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,679Updated last month
- XSS payloads designed to turn alert(1) into P1☆1,378Updated 2 years ago
- This script grab public report from hacker one and make some folders with poc videos�☆902Updated this week
- Awesome XSS stuff☆5,000Updated 11 months ago
- ☆1,781Updated 4 months ago
- 🐛 A list of writeups from the Google VRP Bug Bounty program☆1,351Updated last month
- This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …☆3,482Updated this week
- The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, su…☆3,586Updated last week
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.☆856Updated 3 weeks ago
- Contextual Content Discovery Tool☆2,964Updated last year
- Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…☆4,742Updated 8 months ago
- A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.☆1,830Updated last year