api-security

Here are 147 public repositories matching this topic...

jassics / security-study-plan

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

cybersecurity infosec application-security pentesting study-guide appsec aws-security study-plan security-testing api-security azure-security appsec-tutorials gcp-security devsecops-university cybersecurity-education study-planner

Updated Oct 30, 2024

arainho / awesome-api-security

Star

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

security fuzzing infosec awesome-list pentest api-security api-pentest api-sec apisec api-hacking api-hunting api-hacks api-hardening

Updated Sep 18, 2024

inonshk / 31-days-of-API-Security-Tips

Star

This challenge is Inon Shkedy's 31 days API Security Tips.

security bug-bounty infosec bugbounty pentest api-security bugbountytips api-pentest

Updated Apr 20, 2022

HolyBugx / HolyTips

Star

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

api checklist security web webapp pentesting writeups bugbounty pentest websecurity api-security bugbountytips bugbounty-writeups

Updated Sep 5, 2021

wallarm / gotestwaf

Star

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

security waf owasp bugbounty web-application-firewall security-tools web-application-security security-testing graphql-security api-security rest-security grpc-security

Updated Oct 21, 2024
Go

Zeyad-Azima / Offensive-Resources

Sponsor

Star

A Huge Learning Resources with Labs For Offensive Security Players

Updated Jul 13, 2022

akto-api-security / akto

Star

Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

security authentication authorization api-testing hacktoberfest api-discovery owasp-top-10 devsecops security-testing api-security sensitive-data-exposure threat-detection idor devsecops-pipeline hacktoberfest2023 api-security-testing

Updated Nov 14, 2024
Java

API-Security / APIKit

Star

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

burp-extensions api-security api-sec apisec

Updated Apr 2, 2024
Java

dsopas / MindAPI

Star

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

hacking methodology mindmap api-security mindapi

Updated Sep 25, 2024

piomin / sample-spring-oauth2-microservices

Sponsor

Star

some examples that show basic and more advanced implementations of oauth2 authorization mechanism in spring-cloud microservices environment

oauth jwt oauth2 spring-boot spring-cloud authorization spring-security zuul spring-security-oauth2 api-security microservices-security

Updated Jan 22, 2020
Java

Safe3 / uuWAF

Star

A industry-leading free, high-performance, AI and semantic technology web application and API security protection product - uuWAF. 一款工业级免费、高性能、高扩展，支持AI和语义引擎的Web应用和API安全防护产品-南墙。Web应用防火墙、WAF、WAAP

security ddos api-gateway waf owasp application-security modsecurity web-application-firewall http-flood data-mask hips rasp api-security waap web-security-gateway uuwaf

Updated Nov 12, 2024
Shell

metlo-labs / metlo

Star

Metlo is an open-source API security platform.

aws security monitoring api-gateway cybersecurity infosec application-security vulnerabilities bugbounty pentest vulnerability-detection api-security api-pentest infosectools bugbounty-tools metlo

Updated May 15, 2024
TypeScript

blst-security / cherrybomb

Star

Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.

api cli open-source http security best-practices openapi cybersecurity web-security business-logic cyber security-tools websecurity openapi3 web-sec-scanner api-security firecracker blst

Updated Oct 25, 2024
Rust

wallarm / awesome-nginx-security

Star

🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)

nginx kubernetes security webserver waf load-balancer apigateway application-security awesome-list naxsi modsecurity nginx-server nginx-configuration mod-security awesome-lists nginx-security api-security nginx-environment

Updated Oct 24, 2023

openappsec / openappsec

Star

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

nginx kubernetes rate-limiting waf owasp kong application-security appsec web-application-firewall security-tools owasp-top-ten devsecops api-security nginx-proxy-manager threat-prevention

Updated Nov 10, 2024
C++

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.

owasp api-rest api-security api-hacking api-security-testing offat