There are 11 repositories under api-security topic.
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
This challenge is Inon Shkedy's 31 days API Security Tips.
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
Metlo is an open-source API security platform.
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
A Huge Learning Resources with Labs For Offensive Security Players
Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller (based on NGINX)
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
A FREE comprehensive online Go hacking tutorial utilizing the x64, ARM64 and ARM32 architectures going step-by-step into the world of reverse engineering Golang from scratch.
some examples that show basic and more advanced implementations of oauth2 authorization mechanism in spring-cloud microservices environment
Learn practical Mobile and API security techniques: API Key, Static and Dynamic HMAC, Dynamic Certificate Pinning, and Mobile App Attestation.
🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!
Dockerized ASP.NET Core Web API app in Heroku
How to implement Step-up Authentication using Amazon Cognito
⚡️ Docker official image for Wallarm Node. API security platform agent.
Secure NestJs Rest API with Keycloak
A companion repo for the blog article: https://blog.approov.io/adding-oauth2-to-mobile-android-and-ios-clients-using-the-appauth-sdk
AWS API Gateway Security Deep dive
Protocol specification and Node library designed to make building APIs that use HMAC signatures simple
Sniper. Passive Secrets Hunting.🚬
My Application Security Notes - web, mobile, thick client, API, and more.
An ongoing collection of awesome software, API libraries, checlists, best guidelines and resources and most important security countermeasures when designing, testing, and releasing your API.