Check your WAF before an attacker does
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
Automated API security testing
ScriptOcalypse 🏴☠️- Nothing here… just a lot of weird ideas with a chaotic mix of lemonade, boredom, and automation that somehow work.
Lightweight CLI tool for scanning REST APIs for CORS issues, methods, and info leaks.
Replace, load and replay Postman collections to Burp, Zap, etc.
An intelligent web-proxy that monitors API requests of a web application and detects API security vulnerabilities automatically.
Add a description, image, and links to the api-security-testing topic page so that developers can more easily learn about it.
To associate your repository with the api-security-testing topic, visit your repo's landing page and select "manage topics."