yogsec / API-Pentesting-ToolsLinks
API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).
☆227Updated 9 months ago
Alternatives and similar repositories for API-Pentesting-Tools
Users that are interested in API-Pentesting-Tools are comparing it to the libraries listed below
Sorting:
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆216Updated 3 months ago
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆263Updated 6 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆192Updated this week
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆383Updated last month
- 🥷 SecArchive - Cybersecurity Resource Collection A curated archive of high-quality resources for learning cybersecurity, bug bounty, et…☆312Updated last week
- Subdomain Enumerator and Simple Crawler☆301Updated 2 weeks ago
- A deliberately vulnerable banking application designed for practicing Security Testing of Web App, APIs, AI integrated App and secure cod…☆535Updated last month
- OSCP Cheatsheet by Sai Sathvik☆84Updated 2 years ago
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆187Updated 9 months ago
- Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a var…☆47Updated 7 months ago
- LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities☆300Updated 2 years ago
- Nuclei-AI-Prompts☆349Updated 6 months ago
- GoogleDorker - Unleash the power of Google dorking for ethical hackers with custom search precision.☆258Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆303Updated 5 months ago
- ☆204Updated 11 months ago
- DockerSpy searches for images on Docker Hub and extracts sensitive information such as authentication secrets, private keys, and more.☆242Updated last year
- ☆195Updated 9 months ago
- TerminatorZ is a highly sophisticated and efficient web security tool that scans for top potential vulnerabilities with known CVEs in you…☆288Updated last year
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆224Updated 4 months ago
- Complete Roadmap for Penetration Testing☆259Updated last year
- Find XSS payloads that actually work by filtering them based on real-world constraints instead of blind payload spraying.☆75Updated last week
- ☆169Updated this week
- cyber security mind maps collection☆225Updated 2 years ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆164Updated 7 months ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆162Updated last year
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆320Updated 2 months ago
- Search for all leaked keys/secrets using one regex! bugbounty☆169Updated 9 months ago
- This repository updates latest Bug Bounty medium writeups every 10 minutes, https://readmedium.com/Medium_URL, https://archive.ph/Medium_…☆133Updated last week
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆65Updated 7 months ago
- ☆90Updated 3 months ago