matusf / openapi-fuzzerLinks
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
☆561Updated last year
Alternatives and similar repositories for openapi-fuzzer
Users that are interested in openapi-fuzzer are comparing it to the libraries listed below
Sorting:
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,270Updated this week
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆449Updated 3 months ago
- Private key usage verification☆431Updated 2 months ago
- This is a tool for auditing github repos, users, and teams. Good for compliance, security and other stuff.☆196Updated this week
- Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real impl…☆411Updated 3 years ago
- User-friendly OAuth2 CLI☆819Updated last month
- A static analysis file format checker.☆239Updated 4 years ago
- delegated, decentralized, capabilities based authorization token☆1,028Updated last week
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,743Updated 2 months ago
- Secure shell history commands by finding sensitive data☆224Updated 2 years ago
- Semgrep queries developed by Trail of Bits.☆410Updated 2 weeks ago
- Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validati…☆1,190Updated 8 months ago
- A FOSS, cross-platform version of GitHub Actions and Gitlab CI☆571Updated last year
- Rust library and daemon for easily starting postgres databases per-test without Docker☆234Updated 2 months ago
- HTTP proxy that injects 3rd party credentials into requests☆217Updated last week
- A command-line tool to prevent committing secret keys into your source code☆853Updated 3 weeks ago
- Remote shell into ephemeral environments 🐚 🦀☆798Updated last year
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆263Updated 3 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆222Updated last year
- Inspektor is a protocol-aware proxy that is used to enforce access policies👮☆283Updated 2 years ago
- An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API securit…☆541Updated 8 months ago
- A simple HTTP proxy that fogs over naughty URLs☆1,170Updated 2 weeks ago
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆364Updated 6 months ago
- A strong, compile-time enforced authorization framework for rust applications.☆352Updated last year
- Experimental Postgres extension for quickly branching databases through file system snapshots☆338Updated last year
- Fast HTTP enumerator☆484Updated 2 months ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆111Updated 2 years ago
- OpenAPI Diff and Breaking Changes☆889Updated last month
- 🐘 Linter for Postgres migrations & SQL☆749Updated this week
- Seamless GitHub PR management from the command-line☆118Updated 2 weeks ago