api-security · GitHub Topics

网络安全工程师学习计划

aws-security study-guide study-plan appsec appsec-tutorials azure-security devsecops-university gcp-security pentesting application-security Cybersecurity security-testing api-security

4.63 k

5 个月前

arainho / awesome-api-security

#Awesome#A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

api-security api-sec Awesome Lists api-hacking api-pentest apisec 安全 pentest Fuzzing/Fuzz testing Cybersecurity

3.32 k

2 个月前

inonshk / 31-days-of-API-Security-Tips

This challenge is Inon Shkedy's 31 days API Security Tips.

pentest api-pentest Bug Bounty api-security 安全 bugbountytips Cybersecurity

2.13 k

3 年前

API-Security / APIKit

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

burp-extensions apisec api-security api-sec

Java 2.1 k

1 年前

HolyBugx / HolyTips

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

安全 Web Web app websecurity Bug Bounty bugbountytips bugbounty-writeups pentest pentesting writeups API api-security checklist

1.88 k

4 年前

wallarm / gotestwaf

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

owasp api-security 安全 Bug Bounty waf web-application-security web-application-firewall security-testing graphql-security

Go 1.67 k

4 个月前

metlo-labs / metlo

Metlo is an open-source API security platform.

安全 API api-security application-security Cybersecurity 监控 vulnerabilities vulnerability-detection metlo api-pentest Amazon Web Services Bug Bounty bugbounty-tools infosectools pentest

TypeScript 1.66 k

25 天前

akto-api-security / akto

Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure

api-security api-discovery api-security-testing api-testing Authentication Authorization devsecops idor owasp-top-10 安全 security-testing sensitive-data-exposure threat-detection Hacktoberfest hacktoberfest2023 devsecops-pipeline

Java 1.32 k

3 天前

openappsec / openappsec

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

api-security application-security Kubernetes nginx web-application-firewall appsec devsecops kong rate-limiting 安全 waf owasp owasp-top-ten

C++ 1.24 k

3 天前

blst-security / cherrybomb

Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.

firecracker 命令行界面 cyber Cybersecurity business-logic 安全 API api-security best-practices HTTP OpenAPI Specification openapi3 Open Source websecurity web-security

Rust 1.19 k

8 个月前

Safe3 / uuWAF

#安全#An industry-leading free, high-performance, AI and semantic technology Web Application Firewall and API Security Gateway (WAAP) - UUSEC WAF.

waf application-security web-application-firewall modsecurity API api-security 安全 ddos owasp rasp xss sql-injection nginx

C 1.17 k

1 个月前

Zeyad-Azima / Offensive-Resources

#学习与技能提升#A Huge Learning Resources with Labs For Offensive Security Players

API infrastructure learning 安全移动 Web hack Hacking owasp Cybersecurity web-security mobile-security offensive offensive-security red-team owasp-top-10 redteam cloud-security api-security red-teaming

967

3 年前

dsopas / MindAPI

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

Hacking methodology mindmap api-security

842

4 个月前

wallarm / awesome-nginx-security

#Awesome#🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)

nginx modsecurity waf naxsi Awesome Lists 安全 webserver load-balancer nginx-server nginx-configuration Kubernetes application-security api-security apigateway

766

2 年前

OWASP / OFFAT

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towar...

api-hacking API api-security api-security-testing owasp offat

Python 635

6 天前

Mehdi0x90 / Web_Hacking

Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.

616

13 天前

wallarm / api-firewall

Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.

proxy firewall waf API apigateway 安全 api-security OpenAPI Specification swagger web-application-security web-application-firewall

Go 615

7 天前

openclarity / apiclarity

An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.

Kubernetes 微服务 api-security swagger OpenAPI Specification service-mesh WebAssembly istio envoy

Go 540

8 个月前

adhocore / php-jwt

Ultra lightweight, dependency free and standalone JSON web token (JWT) library for PHP5.6 to PHP8.4+. This library makes JWT a cheese. It is a minimal JWT integration for PHP.

PHP JSON Web Tokens api-security OAuth 2.0 json-web-signature

PHP 298

4 个月前

yogsec / API-Pentesting-Tools

API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).

API api-security api-security-testing api-hacking api-sec Cybersecurity OSINT ethical-hacking-tools Python 工具

225

3 个月前