Category

API Security

Everything related to attacking and securing modern APIs including REST, GraphQL, gRPC, and more. Covers broken authentication, IDOR, mass assignment, BOLA, rate limiting, and JWT flaws. Includes real-world exploits, recon techniques, gateway bypasses, and best-in-class tooling for testing and exploitation.

Back to categories

API Security

Visit Website

Schemathesis

Details

Schemathesis is a tool that automatically generates API tests from OpenAPI and GraphQL schemas to find bugs.

API Static Analysis

AI SecurityCloud SecurityApplication SecurityAPI SecurityWireless SecurityInfrastructure SecurityReporting

Visit Website

SecCheckmate

Details

Offline security checklist & report generator with 200+ tests across web, cloud, WiFi, firmware, and AI security domains.

Report AI Cloud Web API+3

AI SecurityApplication SecurityAPI SecurityVulnerability IntelligenceRed Team OperationsReportingCloud Security

Visit Website

Terra Security

Details

Agentic AI-powered continuous penetration testing as a service (PTaaS) platform that combines AI scale with human supervision.

AI API Web Report Cloud+3

Application SecurityAPI Security

Visit Website

Titus

Details

Titus is a high-performance secrets scanner that detects credentials, API keys, and tokens in source code, files, and git history with 459 detection rules and live credential validation.

Static Analysis API Web Mobile External

Application SecurityAPI Security

Visit Website

Webhook.site

Details

Instantly generate a free, unique URL and email address to test, inspect, and automate (with a visual workflow editor and scripts) incoming HTTP requests and emails

Web API Cloud