microsoft / restler-fuzzerLinks
RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.
☆2,769Updated 3 months ago
Alternatives and similar repositories for restler-fuzzer
Users that are interested in restler-fuzzer are comparing it to the libraries listed below
Sorting:
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆455Updated 5 months ago
- REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…☆263Updated 3 years ago
- A self-hosted Fuzzing-As-A-Service platform☆2,833Updated last year
- Coverage-guided, in-process fuzzing for the JVM☆1,129Updated 3 weeks ago
- Black-box fuzzer that fuzzes APIs based on OpenAPI specification. Find bugs for free!☆561Updated last year
- Tutorials, examples, discussions, research proposals, and other resources related to fuzzing☆3,685Updated 9 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆953Updated this week
- DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.☆957Updated this week
- FuzzBench - Fuzzer benchmarking as a service.☆1,156Updated 6 months ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆493Updated 8 months ago
- A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' qu…☆4,357Updated this week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆848Updated last year
- Open source vulnerability DB and triage service.☆1,937Updated last week
- Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)☆815Updated last year
- A security focused static analysis tool for Android and Java applications.☆1,169Updated this week
- Automated Security Testing For REST API's☆2,600Updated last year
- ⚙️ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.☆1,019Updated last week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,150Updated last week
- A fork and successor of the Sulley Fuzzing Framework☆2,190Updated 2 months ago
- OWASP API Security Project☆2,195Updated 7 months ago
- american fuzzy lop - a security-oriented fuzzer☆3,943Updated 4 years ago
- grep rough audit - source code auditing tool☆1,634Updated 2 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆747Updated this week
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆544Updated 3 years ago
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆1,849Updated this week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,391Updated this week
- Resources related to GitHub Security Lab☆1,519Updated 3 weeks ago
- Project page for "The Fuzzing Book"☆1,196Updated 3 months ago
- RESTest: Automated Black-Box Testing of RESTful Web APIs☆220Updated last month
- The first open-source AI-driven tool for automatically generating system-level test cases (also known as fuzzing) for web/enterprise appl…☆588Updated last week