Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 14 api-security Open-Source Projects
-
security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
-
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
HolyTips
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
-
gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
-
cherrybomb
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
akto
Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
-
MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
-
openappsec
open-appsec is an open-source machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. It is available for NGINX, NGINX Ingress, Envoy (Soon), Kong (Soon), Ambassador (Soon).
-
api-firewall
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
-
apiclarity
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
-
Go-Hacking
A FREE comprehensive online Go hacking tutorial utilizing the x64, ARM64 and ARM32 architectures going step-by-step into the world of reverse engineering Golang from scratch.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
So far, I’ve been using Metlo's protection features to initially test out its capabilities on my app, but there’s still a whole other Testing feature that it has that I'm starting to look into. Everything I’ve tried out has been pretty quick and easy so hopefully I can play around with the Testing more to help me catch any other authentication or authorization vulnerabilities that might exist in my app. If this is something that interests you, you can check it out at https://metlo.com .
Project mention: Cherrybomb: Audit, validate and test API specifications | news.ycombinator.com | 2023-11-22
Qualys is good. For open source vulnerability scanner for APIs - you can also try https://github.com/akto-api-security/akto
Project mention: Seeking contributors for a security open-source project | /r/developersIndia | 2023-09-16If someone in the community is interested in doing these projects, we will be happy to guide and help you. The contributions guidelines are available here: https://github.com/openappsec/openappsec/blob/main/CONTRIBUTING.md
Project mention: api-firewall VS asteria - a user suggested alternative | libhunt.com/r/api-firewall | 2023-08-27
We'll install APIClarity into a Kubernetes cluster to test our API documentation. We're using a Kind cluster for demonstration purposes. Of course, if you have another Kubernetes cluster up and running elsewhere, all steps also work there.
api-security related posts
- Open source vulnerability scanner
- FLaNK Stack Weekly for 27 November 2023
- Seeking contributors for a security open-source project
- open-appsec seeking contributors
- API Security Testing
- List of API Security tools and resources
- Deep Dive into open-appsec Machine Learning Technology
-
A note from our sponsor - InfluxDB
www.influxdata.com | 27 Apr 2024
Index
What are some of the best open-source api-security projects? This list will help you:
Project | Stars | |
---|---|---|
1 | security-study-plan | 4,108 |
2 | awesome-api-security | 2,730 |
3 | 31-days-of-API-Security-Tips | 2,057 |
4 | HolyTips | 1,685 |
5 | metlo | 1,567 |
6 | gotestwaf | 1,410 |
7 | cherrybomb | 1,042 |
8 | akto | 823 |
9 | MindAPI | 775 |
10 | openappsec | 661 |
11 | api-firewall | 531 |
12 | apiclarity | 471 |
13 | Web_Hacking | 186 |
14 | Go-Hacking | 170 |
Sponsored