matusf / openapi-fuzzer
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
☆543Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for openapi-fuzzer
- Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validati…☆1,153Updated 3 weeks ago
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,192Updated this week
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆431Updated 4 months ago
- Private key usage verification☆410Updated 10 months ago
- Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real impl…☆398Updated 2 years ago
- Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.☆1,696Updated this week
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,612Updated last month
- User-friendly OAuth2 CLI☆755Updated this week
- TLS key escrow/interception for debugging☆249Updated 6 months ago
- Secure shell history commands by finding sensitive data☆219Updated last year
- A static analysis file format checker.☆237Updated 4 years ago
- Publish from GitHub Actions using multi-factor authentication☆276Updated last month
- Tool to find common vulnerabilities in cryptographic public keys☆256Updated 3 weeks ago
- delegated, decentralized, capabilities based authorization token☆962Updated this week
- HTTP proxy that injects 3rd party credentials into requests☆192Updated 2 months ago
- IntegreSQL manages isolated PostgreSQL databases for your integration tests.☆752Updated 9 months ago
- An easy-to-use, zero-downtime schema migration tool for Postgres☆1,727Updated last month
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆262Updated 2 years ago
- A command-line tool to prevent committing secret keys into your source code☆807Updated 3 months ago
- 🐘 linter for PostgreSQL, focused on migrations☆610Updated last week
- Just One Single History☆1,494Updated 2 weeks ago
- 🤬 A categorized list of incidents caused by unappreciated OSS maintainers or underfunded OSS projects. Feedback welcome!☆324Updated last year
- A proxy that validates responses and requests against an OpenAPI document. https://www.npmjs.com/package/openapi-cop https://hub.docker.c…☆370Updated this week
- CI/CD Security Analyzer☆626Updated last month
- This is a tool for auditing github repos, users, and teams. Good for compliance, security and other stuff.☆192Updated this week
- Rust library and daemon for easily starting postgres databases per-test without Docker☆225Updated 3 weeks ago
- Inspektor is a protocol-aware proxy that is used to enforce access policies👮☆283Updated 2 years ago
- A sharp cut(1) clone.☆699Updated 4 months ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆458Updated last month
- A bit like tee, a bit like script, but all with a fake tty. Lets you remote control and watch a process☆325Updated 3 months ago