matusf / openapi-fuzzer
Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!
☆557Updated last year
Alternatives and similar repositories for openapi-fuzzer:
Users that are interested in openapi-fuzzer are comparing it to the libraries listed below
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆441Updated last week
- delegated, decentralized, capabilities based authorization token☆994Updated this week
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,250Updated last week
- User-friendly OAuth2 CLI☆795Updated this week
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆263Updated 3 years ago
- Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real impl…☆408Updated 3 years ago
- HTTP proxy that injects 3rd party credentials into requests☆202Updated this week
- Inspektor is a protocol-aware proxy that is used to enforce access policies👮☆282Updated 2 years ago
- This is a tool for auditing github repos, users, and teams. Good for compliance, security and other stuff.☆195Updated 3 weeks ago
- Packj stops Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in y…☆661Updated 11 months ago
- Lightweight static analyzer for several programming languages☆373Updated last year
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆220Updated 10 months ago
- Build OpenAPI3.0 specification from HAR.☆87Updated last year
- Private key usage verification☆428Updated 3 months ago
- An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API securit…☆526Updated 5 months ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆471Updated 3 months ago
- A static analysis file format checker.☆239Updated 4 years ago
- protoCURL is cURL for Protobuf: The command-line tool for interacting with Protobuf over HTTP REST endpoints using human-readable text fo…☆244Updated last week
- A simple HTTP proxy that fogs over naughty URLs☆1,157Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆549Updated last week
- Secure shell history commands by finding sensitive data☆221Updated last year
- A security layer for Git repositories☆497Updated this week
- Semgrep queries developed by Trail of Bits.☆387Updated last week
- A curated list of awesome GraphQL Security frameworks, libraries, software and resources☆321Updated last year
- An OpenAPI client generator☆602Updated this week
- OpenAPI Diff and Breaking Changes☆831Updated this week
- Experimental Postgres extension for quickly branching databases through file system snapshots☆334Updated last year
- Build and execute GraphQL queries in the terminal.☆467Updated 6 months ago
- Tool to find common vulnerabilities in cryptographic public keys☆274Updated last month
- Keyless Git signing using Sigstore☆973Updated this week