roottusk / vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
☆1,178Updated last year
Related projects ⓘ
Alternatives and complementary repositories for vapi
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆929Updated 3 months ago
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.☆823Updated last month
- API Security Project aims to present unique attack & defense methods in API Security field☆1,354Updated 8 months ago
- completely ridiculous API (crAPI)☆1,122Updated this week
- For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙☆1,710Updated 5 months ago
- Identify privilege escalation paths within and across different clouds☆669Updated 2 weeks ago
- ☆1,113Updated last year
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,077Updated 2 months ago
- Burp Suite Certified Practitioner Exam Study☆928Updated 3 weeks ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆877Updated this week
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,426Updated 6 months ago
- Contextual Content Discovery Tool☆2,662Updated 6 months ago
- Payload Arsenal for Pentration Tester and Bug Bounty Hunters☆892Updated last year
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆1,950Updated 4 months ago
- Azure and AWS Attacks☆1,048Updated last year
- Awesome list of step by step techniques to achieve Remote Code Execution on various apps!☆1,851Updated last year
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆946Updated 2 years ago
- Automating situational awareness for cloud penetration tests.☆1,959Updated last month
- ☆742Updated 4 months ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,576Updated 2 months ago
- Awesome cloud enumerator☆895Updated 3 months ago
- ☆1,581Updated last month
- My subdomain enumeration script. It's unique in the way it is built upon.☆665Updated 3 months ago
- This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.☆1,598Updated 2 years ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,688Updated last month
- Bugbounty Resources☆534Updated last year
- 🛡️ Awesome Cloud Security Resources ⚔️☆2,088Updated 2 weeks ago
- NMAP Vulnerability Scanning Scripts☆628Updated 2 years ago
- Twitter vulnerable snippets☆942Updated 3 weeks ago
- SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to crea…☆527Updated 2 years ago