RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.
☆2,870Feb 13, 2026Updated 2 weeks ago
Alternatives and similar repositories for restler-fuzzer
Users that are interested in restler-fuzzer are comparing it to the libraries listed below
Sorting:
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆264Jan 13, 2022Updated 4 years ago
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆466Mar 6, 2025Updated 11 months ago
- Contextual Content Discovery Tool☆3,096Apr 29, 2024Updated last year
- Coverage-guided, in-process fuzzing for the JVM☆1,199Updated this week
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆226May 9, 2024Updated last year
- Automated Security Testing For REST API's☆2,640Jun 5, 2024Updated last year
- Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!☆574Jan 29, 2024Updated 2 years ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,285Updated this week
- Fast web fuzzer written in Go☆15,679Apr 24, 2025Updated 10 months ago
- A self-hosted Fuzzing-As-A-Service platform☆2,831Nov 1, 2023Updated 2 years ago
- A fork and successor of the Sulley Fuzzing Framework☆2,316Feb 15, 2026Updated 2 weeks ago
- InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…☆1,737Feb 16, 2026Updated 2 weeks ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,389May 1, 2025Updated 10 months ago
- OSS-Fuzz - continuous fuzzing for open source software.☆11,929Updated this week
- CATS is a REST API Fuzzer and negative testing tool for OpenAPI endpoints. CATS automatically generates, runs and reports tests with min…☆1,344Updated this week
- Tutorials, examples, discussions, research proposals, and other resources related to fuzzing☆3,751Oct 24, 2024Updated last year
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,073Feb 24, 2026Updated last week
- AFLNet: A Greybox Fuzzer for Network Protocols (https://thuanpv.github.io/publications/AFLNet_ICST20.pdf)☆991May 26, 2025Updated 9 months ago
- Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practis…☆1,676May 24, 2025Updated 9 months ago
- HTTP parameter discovery suite.☆6,091Feb 20, 2025Updated last year
- Multi-Cloud Security Auditing Tool☆7,551Sep 23, 2025Updated 5 months ago
- The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power…☆6,326Updated this week
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆814Jun 9, 2025Updated 8 months ago
- Automatic SSRF fuzzer and exploitation tool☆3,489Sep 4, 2025Updated 6 months ago
- A JavaScript Engine Fuzzer☆2,152Updated this week
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,497Nov 16, 2025Updated 3 months ago
- the Network Protocol Fuzzer that we will want to use.☆793Jan 29, 2024Updated 2 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,123Apr 21, 2024Updated last year
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,645Nov 23, 2025Updated 3 months ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆492May 13, 2023Updated 2 years ago
- FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…☆291May 8, 2022Updated 3 years ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆27,300Updated this week
- Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with h…☆8,550Feb 19, 2026Updated 2 weeks ago
- DOM fuzzer☆1,769Nov 26, 2024Updated last year
- The Swiss Army knife for automated Web Application Testing☆2,323May 8, 2024Updated last year
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆1,631Mar 11, 2024Updated last year
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,773May 22, 2024Updated last year
- Find, verify, and analyze leaked credentials☆24,779Updated this week
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,350Sep 30, 2024Updated last year