mattvaldes / vulnerable-apiLinks
This repository contains an example Python API that is vulnerable to several different web API attacks.
☆70Updated last year
Alternatives and similar repositories for vulnerable-api
Users that are interested in vulnerable-api are comparing it to the libraries listed below
Sorting:
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆44Updated last year
- ☆72Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆106Updated last year
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆157Updated 3 months ago
- Clientside vulnerability / reflected xss fuzzer☆149Updated 2 years ago
- A natural evolution of Burp Suite's Repeater tool☆93Updated 2 years ago
- This repository contains an example Python API that is vulnerable to several different web API attacks.☆27Updated 6 years ago
- Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …☆203Updated last year
- A tool geared towards pentesting APIs using OpenAPI definitions.☆181Updated 2 years ago
- ASN reconnaissance script☆132Updated last year
- Detectify Crowdsource Challenge☆70Updated 3 years ago
- Damn Vulnerable Java (EE) Application☆142Updated last year
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆81Updated 2 years ago
- Finds the End-Points in JavaScript files☆97Updated 3 years ago
- GraphQL security testing tool☆126Updated 3 years ago
- All-in-one AWS S3 bucket tool for pentesters.☆74Updated 6 years ago
- AWS Security Checks☆40Updated 7 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 5 years ago
- BurpSuite using the document and some extensions☆70Updated 5 years ago
- Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks☆80Updated 3 years ago
- ☆53Updated 8 months ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 6 years ago
- Push notifications for passive DNS data☆109Updated 9 years ago
- A tool to bruteforce nameservers when working with subdomain delegations to AWS.☆58Updated 6 years ago
- Brute force AWS bucket finder☆61Updated 2 years ago
- XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…☆60Updated 4 years ago
- Evenly distributes scanner load across targets☆92Updated 5 months ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆58Updated 5 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated last year
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆68Updated 4 years ago