api-security

Here are 87 public repositories matching this topic...

jassics / security-study-plan

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

cybersecurity infosec application-security pentesting study-guide appsec aws-security study-plan security-testing api-security azure-security appsec-tutorials gcp-security devsecops-university cybersecurity-education study-planner

Updated Apr 3, 2023

arainho / awesome-api-security

Star

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

security fuzzing infosec awesome-list pentest api-security api-pentest api-sec apisec api-hacking api-hunting api-hacks api-hardening

Updated Mar 26, 2023

inonshk / 31-days-of-API-Security-Tips

Star

This challenge is Inon Shkedy's 31 days API Security Tips.

security bug-bounty infosec bugbounty pentest api-security bugbountytips api-pentest

Updated Apr 20, 2022

HolyBugx / HolyTips

Star

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

api checklist security web webapp pentesting writeups bugbounty pentest websecurity api-security bugbountytips bugbounty-writeups

Updated Sep 5, 2021

metlo-labs / metlo

Star

Metlo is an open-source API security platform.

aws security monitoring api-gateway cybersecurity infosec application-security vulnerabilities bugbounty pentest vulnerability-detection api-security api-pentest infosectools bugbounty-tools metlo

Updated Apr 3, 2023
TypeScript

API-Security / APIKit

Star

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

burp-extensions api-security api-sec apisec

Updated Mar 17, 2023
Java

wallarm / gotestwaf

Star

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

security waf owasp bugbounty web-application-firewall security-tools web-application-security security-testing graphql-security api-security rest-security grpc-security

Updated Mar 24, 2023
Go

blst-security / cherrybomb

Star

Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.

api cli open-source http security best-practices openapi cybersecurity web-security business-logic cyber security-tools websecurity openapi3 web-sec-scanner api-security firecracker blst

Updated Mar 14, 2023
Rust

dsopas / MindAPI

Star

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

hacking methodology mindmap api-security mindapi

Updated Jan 13, 2023

wallarm / awesome-nginx-security

Star

🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)

nginx kubernetes security webserver waf load-balancer apigateway application-security awesome-list naxsi modsecurity nginx-server nginx-configuration mod-security awesome-lists nginx-security api-security nginx-environment

Updated Sep 25, 2020

Zeyad-Azima / Offensive-Resources

Star

A Huge Learning Resources with Labs For Offensive Security Players

Updated Jul 13, 2022

wallarm / api-firewall

Star

Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.

Updated Feb 11, 2023
Go

openclarity / apiclarity

Star

An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.

kubernetes microservices microservice swagger wasm openapi k8s openapi-spec service-mesh openapi-specification envoy istio api-security shadow-api zombie-api

Updated Apr 2, 2023
Go

adhocore / php-jwt

Sponsor

Star

Ultra lightweight, dependency free and standalone JSON web token (JWT) library for PHP5.6 to PHP8.1. This library makes JWT a cheese.

php jwt oauth2 php7 php-jwt jwt-authentication json-web-signature json-web-token jwt-auth hacktoberfest php8 api-security json-web-token-php api-auth adhocore hacktoberfest2021

Updated Mar 25, 2023
PHP

akto-api-security / akto

Star

Instant, Open source API security → API discovery, automated business logic testing and runtime detection.

security authentication authorization api-testing api-discovery owasp-top-10 devsecops security-testing api-security sensitive-data-exposure threat-detection idor api-security-testing

Updated Apr 3, 2023
Java

Safe3 / uuWAF

Star

一款社区驱动的免费、高性能、高扩展顶级Web应用和API安全防护产品

api-gateway waf application-security modsecurity web-application-firewall api-security web-security-gateway

Updated Apr 3, 2023
Lua

piomin / sample-spring-oauth2-microservices

Sponsor

Star

some examples that show basic and more advanced implementations of oauth2 authorization mechanism in spring-cloud microservices environment

oauth jwt oauth2 spring-boot spring-cloud authorization spring-security zuul spring-security-oauth2 api-security microservices-security

Updated Jan 22, 2020
Java

mytechnotalent / Go-Hacking

Star

A comprehensive and FREE Online Go hacking tutorial utilizing the x64, ARM64 and ARM32 architectures going step-by-step into the world of reverse engineering Golang from scratch.