vwt-digital / openapi3-fuzzer
Simple fuzzer for OpenAPI 3 specification based APIs
☆21Updated last year
Related projects: ⓘ
- Semgrep extension for Visual Studio Code☆53Updated last week
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆205Updated 4 months ago
- Fuzz test your application using your OpenAPI or Swagger API definition without coding☆417Updated 2 months ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆109Updated last year
- Automated API security testing☆78Updated last month
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆65Updated 2 weeks ago
- CVE database☆22Updated 4 years ago
- ZAP Management Scripts☆20Updated last week
- Python Faker provider for security related data☆35Updated last month
- This project is deprecated. Use https://github.com/returntocorp/semgrep instead☆73Updated 5 months ago
- A parser for Python dependency files☆61Updated 10 months ago
- ☆28Updated 2 years ago
- Audit python packages for known vulnerabilities☆28Updated 2 years ago
- Security audit Python project dependencies against security advisory databases.☆64Updated 2 weeks ago
- OWASP Foundation Web Respository☆17Updated 4 months ago
- GitHub action to generate a CycloneDX SBOM for Python☆13Updated 2 months ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆126Updated this week
- A place to systematically store software bill of materials (SBOM) documents.☆42Updated last year
- Python classes for the SARIF object model☆39Updated 5 months ago
- Post Processor for Facebook Static Analysis Tools.☆129Updated this week
- A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.☆18Updated last year
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆81Updated this week
- Feed parsing for language package manager updates☆71Updated last week
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆53Updated 2 weeks ago
- SARIF Microsoft Visual Studio Code extension☆110Updated this week
- Low-effort reachability analysis for third-party code vulnerabilities.☆19Updated last year
- ☆13Updated 3 years ago
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆51Updated last year
- Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents☆19Updated last year
- A set of Python command line tools for working with SARIF files produced by code analysis tools☆87Updated this week