mattvaldes / vulnerable-apiLinks
This repository contains an example Python API that is vulnerable to several different web API attacks.
☆70Updated last year
Alternatives and similar repositories for vulnerable-api
Users that are interested in vulnerable-api are comparing it to the libraries listed below
Sorting:
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆44Updated last year
- Clientside vulnerability / reflected xss fuzzer☆149Updated 2 years ago
- ☆72Updated 5 years ago
- ASN reconnaissance script☆132Updated last year
- GraphQL security testing tool☆126Updated 3 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆157Updated 3 months ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆81Updated 2 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆106Updated last year
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆27Updated 6 years ago
- Finds the End-Points in JavaScript files☆97Updated 4 years ago
- ☆53Updated 9 months ago
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆81Updated 3 years ago
- DNS and Target HTTP History Local Storage and Search☆64Updated 4 years ago
- Vulnerable SAML infrastructure training applicaiton☆54Updated 2 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆182Updated 3 years ago
- XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…☆62Updated 4 years ago
- FockCache - Minimalized Test Cache Poisoning☆110Updated 5 years ago
- AWS Security Checks☆40Updated 7 years ago
- ☆27Updated 5 years ago
- A natural evolution of Burp Suite's Repeater tool☆93Updated 2 years ago
- Detectify Crowdsource Challenge☆70Updated 3 years ago
- Push notifications for passive DNS data☆109Updated 9 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated 2 years ago
- Damn Vulnerable Java (EE) Application☆142Updated last year
- ☆20Updated 2 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆77Updated 5 years ago
- ☆60Updated last year
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated last year
- GraphQL security workshop labs☆116Updated last week
- Weaponizing Live CT logs for automated monitoring of assets☆134Updated 4 years ago