api-security topic
MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
HolyTips
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Offensive-Resources
A Huge Learning Resources with Labs For Offensive Security Players
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
php-jwt
Ultra lightweight, dependency free and standalone JSON web token (JWT) library for PHP5.6 to PHP8.2. This library makes JWT a cheese. It is a minimal JWT integration for PHP.
gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
api-firewall
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
apiclarity
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
cherrybomb
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.