matusf / openapi-fuzzerLinks
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
☆572Updated last year
Alternatives and similar repositories for openapi-fuzzer
Users that are interested in openapi-fuzzer are comparing it to the libraries listed below
Sorting:
- Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validati…☆1,223Updated last year
- delegated, decentralized, capabilities based authorization token☆1,068Updated last month
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,310Updated last week
- Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real impl…☆420Updated 3 years ago
- User-friendly OAuth2 CLI☆862Updated last week
- Remote shell into ephemeral environments 🐚 🦀☆801Updated 2 years ago
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆462Updated 8 months ago
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,836Updated 2 weeks ago
- Secure shell history commands by finding sensitive data☆224Updated 2 years ago
- Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.☆2,178Updated 2 weeks ago
- Private key usage verification☆432Updated 7 months ago
- This is a tool for auditing github repos, users, and teams. Good for compliance, security and other stuff.☆199Updated 3 months ago
- Packj stops Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in y…☆680Updated last year
- Port OpenAPI Specs to Postman Collections, inject test suite and run via Newman 👨🏽🚀☆670Updated this week
- CI/CD Security Analyzer☆722Updated 9 months ago
- OpenAPI linting, diffing and testing. Optic helps prevent breaking changes, publish accurate documentation and improve the design of your…☆1,511Updated 3 months ago
- Lightweight static analyzer for several programming languages☆380Updated 2 years ago
- Python source code auditing and static analysis on a large scale☆495Updated 2 years ago
- Rust library and daemon for easily starting postgres databases per-test without Docker☆240Updated 3 weeks ago
- HTTP proxy that injects 3rd party credentials into requests☆228Updated this week
- A FOSS, cross-platform version of GitHub Actions and Gitlab CI☆569Updated last year
- An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API securit…☆559Updated last year
- Semgrep queries developed by Trail of Bits.☆452Updated 2 weeks ago
- protoCURL is cURL for Protobuf: The command-line tool for interacting with Protobuf over HTTP REST endpoints using human-readable text fo…☆249Updated last week
- IntegreSQL manages isolated PostgreSQL databases for your integration tests.☆783Updated last year
- A strong, compile-time enforced authorization framework for rust applications.☆353Updated 2 years ago
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆536Updated 5 months ago
- Tool to find common vulnerabilities in cryptographic public keys☆303Updated 3 weeks ago
- A static analysis file format checker.☆267Updated 5 years ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆302Updated this week