riteshs4hu / API-Pentesting-ResourcesLinks
A comprehensive collection of resources designed to help you enhance the security of your APIs. In this repository, you'll find a wide range of wordlists, checklists, vulnerable app setups, Logger++ filters and resources dedicated to REST APIs, JSON, and GraphQL.
☆23Updated last year
Alternatives and similar repositories for API-Pentesting-Resources
Users that are interested in API-Pentesting-Resources are comparing it to the libraries listed below
Sorting:
- A collection of solutions for every PortSwigger Academy Lab (in progress)☆107Updated 3 years ago
- Describe how to use ffuf different options with examples☆90Updated 2 years ago
- Resources for Mobile Application Testing 📓☆70Updated last year
- ☆81Updated last year
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆53Updated 2 years ago
- This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer whil…☆62Updated 7 months ago
- Private Nuclei Templates☆100Updated 9 months ago
- Here Are Some Bug Bounty Resource From Twitter☆103Updated 6 months ago
- Automation of tokens/api keys testing.☆146Updated 2 years ago
- Bug bounty domain manager with validation, exports & Redis storage ✨☆26Updated 6 months ago
- ☆41Updated 5 months ago
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆96Updated last year
- ☆66Updated last year
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…☆106Updated last year
- A tool for inspecting and analyzing mobile application storage files.☆48Updated 6 months ago
- Collection's of Tech Talk that are presented by me :)☆101Updated 10 months ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆63Updated 4 years ago
- KakHunt is a python GUI Tool private tool which earns me 100s of bugs every month. It spawns URLS and filters Sensitive Info.☆51Updated 2 years ago
- A Django web application for curating Bug Bounty educational Videos☆98Updated 2 years ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆97Updated 11 months ago
- A tool for listing and extracting installed Android APKs and decrypted iOS IPAs (plus app storage) from rooted or jailbroken devices.☆37Updated 7 months ago
- My small collection of reports templates (This is a fork of orignal repo from https://github.com/gwen001/BB-datas)☆127Updated 2 years ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated 2 years ago
- My Notes on Regular Expressions for AWAE/OSWE.☆37Updated 2 years ago
- Advanced Reconnaissance and Web Application Discovery☆88Updated 3 years ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆147Updated 8 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆91Updated 10 months ago
- A collection oneliner scripts for bug bounty☆180Updated last year
- Scripts and other stuff.☆132Updated 2 years ago
- Source Code Review resources for Bug Bounty Hunters & Developers. This Repo is updated consistently.☆74Updated 3 years ago