The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
Automated API security testing
AWS API Gateway Security Deep dive
Code for the Workshop Securing APIs with OAuth in Python
This package facilitates the way of API Signing in Django projects.
AI-Powered Mobile Application Penetration Testing Tool
API GPT is your co-pilot for API security testing, helping you brainstorm and ask anything to API.
Lightweight CLI tool for scanning REST APIs for CORS issues, methods, and info leaks.
Quickstart Approov integration example for the Python FastAPI framework
Quickstart Approov integration example for the Python Django framework
SubGhost is a powerful subdomain discovery tool. It helps you discover hidden or less visible subdomains for a given domain using public API services. The tool is designed to be simple to use while offering great flexibility, such as the ability to choose the output format for results.
PDF Extractor API is a FastAPI project for extracting information from PDFs. It includes user authentication, PDF uploading, and text extraction. The API supports secure PDF uploads, keyword-based extraction, and rate limiting.
An AI-powered static malware detection system analyzing PE/ELF headers, entropy, and API imports using Random Forest/XGBoost. Features FastAPI deployment, SHAP explainability, and enterprise-grade security hardening.
AI-powered system efficiently manages and resolves user requests... Created at https://coslynx.com
A complete package for security testing of REST, SOAP and GraphQL APIs for vulnerabilities.
Sasha - Advanced Security Analysis Tool A modular, automated security analysis tool designed for app developers, penetration testers, and cybersecurity professionals. Sasha detects vulnerabilities in applications, APIs, and infrastructure while providing detailed risk assessment reports. Its modular architecture ensures extensibility
FastAPI-based backend API for managing users and orders with JWT authentication, role-based access control, and PostgreSQL integration.
This a very simple Python Flask server used for the Approov Live Demo.
An intelligent web-proxy that monitors API requests of a web application and detects API security vulnerabilities automatically.
Add a description, image, and links to the api-security topic page so that developers can more easily learn about it.
To associate your repository with the api-security topic, visit your repo's landing page and select "manage topics."