Alternatives and similar repositories for 31-days-of-API-Security-Tips

Users that are interested in 31-days-of-API-Security-Tips are comparing it to the libraries listed below

• lutfumertceylan / top25-parameter
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,791Updated last year
• s0md3v / Corsy
  CORS Misconfiguration Scanner
  ☆1,465Updated 3 years ago
• gwen001 / pentest-tools
  A collection of custom security tools for quick needs.
  ☆3,243Updated 2 years ago
• dwisiswant0 / awesome-oneliner-bugbounty
  A collection of awesome one-liner scripts especially for bug bounty tips.
  ☆2,933Updated last year
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,842Updated last year
• Voorivex / pentest-guide
  Penetration tests guide based on OWASP including test cases, resources and examples.
  ☆2,676Updated 3 years ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,282Updated 7 months ago
• terjanq / Tiny-XSS-Payloads
  A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
  ☆2,199Updated 9 months ago
• jdonsec / AllThingsSSRF
  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
  ☆1,323Updated 4 years ago
• arainho / awesome-api-security
  A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…
  ☆3,409Updated 5 months ago
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆4,966Updated 10 months ago
• httpvoid / writeups
  ☆1,192Updated 3 years ago
• GrrrDog / weird_proxies
  Reverse proxies cheatsheet
  ☆1,843Updated last year
• obheda12 / GitDorker
  A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
  ☆2,434Updated last year
• harsh-bothra / learn365
  This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
  ☆1,674Updated 3 years ago
• six2dez / pentest-book
  ☆1,776Updated 3 months ago
• hisxo / gitGraber
  gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, G…
  ☆2,192Updated 3 months ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆2,011Updated last year
• hackerscrolls / SecurityTips
  ☆1,011Updated 3 years ago
• jaeles-project / jaeles
  The Swiss Army knife for automated Web Application Testing
  ☆2,288Updated last year
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,324Updated 8 months ago
• arkadiyt / bounty-targets-data
  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …
  ☆3,464Updated this week
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆2,079Updated last year
• KingOfBugbounty / KingOfBugBountyTips
  Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens…
  ☆4,717Updated 7 months ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆4,116Updated last year
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,377Updated 2 years ago
• devanshbatham / Awesome-Bugbounty-Writeups
  A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
  ☆5,321Updated 2 years ago
• 1ndianl33t / Bug-Bounty-Roadmaps
  Bug Bounty Roadmaps
  ☆1,705Updated 4 years ago
• assetnote / kiterunner
  Contextual Content Discovery Tool
  ☆2,953Updated last year
• dsopas / MindAPI
  Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
  ☆854Updated last month