yogsec / API-Pentesting-ToolsLinks
API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).
☆230Updated this week
Alternatives and similar repositories for API-Pentesting-Tools
Users that are interested in API-Pentesting-Tools are comparing it to the libraries listed below
Sorting:
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆215Updated 4 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆262Updated 6 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆191Updated last week
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆392Updated 2 months ago
- 🥷 SecArchive - Cybersecurity Resource Collection A curated archive of high-quality resources for learning cybersecurity, bug bounty, et…☆313Updated last week
- ☆194Updated this week
- LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities☆299Updated 2 years ago
- A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure cod…☆546Updated 2 months ago
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆189Updated 10 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆327Updated 3 months ago
- 🔍 LFIer is a powerful and efficient tool for detecting Local File Inclusion (LFI) vulnerabilities in web applications.☆55Updated last year
- Subdomain Enumerator and Simple Crawler☆300Updated last month
- Nuclei-AI-Prompts☆350Updated 7 months ago
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆225Updated 5 months ago
- Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a var…☆47Updated 7 months ago
- Automation tool to testing and confirm the xss vulnerability.☆304Updated 6 months ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆163Updated 8 months ago
- Find XSS payloads that actually work by filtering them based on real-world constraints instead of blind payload spraying.☆128Updated 2 weeks ago
- Complete Roadmap for Penetration Testing☆261Updated last year
- GoogleDorker - Unleash the power of Google dorking for ethical hackers with custom search precision.☆260Updated last year
- TerminatorZ is a highly sophisticated and efficient web security tool that scans for top potential vulnerabilities with known CVEs in you…☆292Updated last year
- ☆88Updated 4 months ago
- OSCP Cheatsheet by Sai Sathvik☆85Updated 2 years ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆162Updated last year
- ☆169Updated last month
- cyber security mind maps collection☆225Updated 2 years ago
- Search for all leaked keys/secrets using one regex! bugbounty☆182Updated 10 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆66Updated 7 months ago
- 🤖 LLM-powered agent for automated Google Dorking in bug hunting & pentesting.☆215Updated last month
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆377Updated 2 years ago