matusf / openapi-fuzzer
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
☆557Updated last year
Alternatives and similar repositories for openapi-fuzzer
Users that are interested in openapi-fuzzer are comparing it to the libraries listed below
Sorting:
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,259Updated last month
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆445Updated 2 months ago
- Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validati…☆1,181Updated 6 months ago
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,721Updated last month
- Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real impl…☆409Updated 3 years ago
- Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.☆1,936Updated this week
- Secure shell history commands by finding sensitive data☆222Updated last year
- User-friendly OAuth2 CLI☆809Updated 2 weeks ago
- IntegreSQL manages isolated PostgreSQL databases for your integration tests.☆777Updated last year
- delegated, decentralized, capabilities based authorization token☆1,009Updated this week
- Port OpenAPI Specs to Postman Collections, inject test suite and run via Newman 👨🏽🚀☆648Updated last month
- This is a tool for auditing github repos, users, and teams. Good for compliance, security and other stuff.☆195Updated last month
- Private key usage verification☆431Updated last month
- A static analysis file format checker.☆239Updated 4 years ago
- TLS key escrow/interception for debugging☆254Updated last year
- Email test server for development, written in Rust☆861Updated 2 months ago
- Rust library and daemon for easily starting postgres databases per-test without Docker☆232Updated last month
- A proxy that validates responses and requests against an OpenAPI document. https://www.npmjs.com/package/openapi-cop https://hub.docker.c…☆371Updated 2 weeks ago
- A command-line tool to prevent committing secret keys into your source code☆840Updated last week
- Build and execute GraphQL queries in the terminal.☆469Updated 8 months ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆565Updated last month
- Restish is a CLI for interacting with REST-ish HTTP APIs with some nice features built-in☆1,048Updated last week
- HTTP proxy that injects 3rd party credentials into requests☆214Updated 3 weeks ago
- Asynchronous event streaming and data replication with plain HTTP APIs.☆167Updated 3 years ago
- Tools, data, and contact lists relevant to The disclose.io Project.☆327Updated last year
- Simple, opinionated and automated consumer-driven contract testing for your JSON API's☆99Updated last year
- Find API quality and security issues via your OpenAPI spec☆237Updated 3 months ago
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆263Updated 3 years ago
- A simple HTTP proxy that fogs over naughty URLs☆1,166Updated this week
- Inspektor is a protocol-aware proxy that is used to enforce access policies👮☆282Updated 2 years ago