There are 12 repositories under api-security topic.
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
This challenge is Inon Shkedy's 31 days API Security Tips.
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
Metlo is an open-source API security platform.
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
A Huge Learning Resources with Labs For Offensive Security Players
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
A FREE comprehensive online Go hacking tutorial utilizing the x64, ARM64 and ARM32 architectures going step-by-step into the world of reverse engineering Golang from scratch.
some examples that show basic and more advanced implementations of oauth2 authorization mechanism in spring-cloud microservices environment
Learn practical Mobile and API security techniques: API Key, Static and Dynamic HMAC, Dynamic Certificate Pinning, and Mobile App Attestation.
🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!
VulnAPI is an open-source project designed to help you scan your APIs for security vulnerabilities and weaknesses.
Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hacking, Social Engineering, Privacy, Incident Response, Threat Assestment, Personal Security, Ai Security, Android Security, Iot Security, Standards.
Dockerized ASP.NET Core Web API app in Heroku
⚡️ Official docker image for Wallarm Node. API security platform agent.
How to implement Step-up Authentication using Amazon Cognito
Secure NestJs Rest API with Keycloak
A companion repo for the blog article: https://blog.approov.io/adding-oauth2-to-mobile-android-and-ios-clients-using-the-appauth-sdk
AWS API Gateway Security Deep dive
api-crypto-spring-boot 是基于 Spring Boot 开发的控制器统一注解方式自动加解密 请求体、响应体 的启动器,该组件能够提供在 接口交互过程中数据的安全保护能力。支持常见的 加解密算法、编码、签名 等模式;
Protocol specification and Node library designed to make building APIs that use HMAC signatures simple