Category

GraphQL Voyager: Visualize any GraphQL API as an interactive graph, aiding in understanding and exploration of its schema and relationships.

GraphQLmap is a scripting engine for GraphQL endpoint pentesting, automating queries and fuzzing for vulnerabilities.

InQL is a Burp Suite extension for advanced GraphQL testing, offering vulnerability detection and customizable scans.

JWT Debugger is a web application to create, encode, decode, and debug JWT (JSON Web Tokens).

Kiterunner is a contextual content discovery tool for modern web applications and APIs, excelling in route/endpoint bruteforcing.

Moxy is an open-source DAST tool with agentic AI for modern web application security testing and automated pentesting workflows.

A Postman recon/OSINT framework for automated API endpoint discovery and secret exploitation in workspaces, collections, requests, users, and teams.

Postman: The leading API platform for building and using APIs. Streamline collaboration and simplify the API lifecycle.

Prism is an open-source HTTP mock and proxy server that accelerates API development with realistic mock servers powered by OpenAPI documents.

RESTler is a stateful REST API fuzzing tool for automatically testing cloud services and finding security and reliability bugs.

AI-driven pentesting platform automating hacker intuition to find vulnerabilities before exploits, reducing discovery costs.

AI-infused API Security solution for the entire API lifecycle, from discovery and posture management to threat protection, including AI Agents.