Newsletter
Join the Community
Subscribe to our newsletter for the latest news and updates
OWASP ASTF: Automated API security testing framework based on OWASP API Security Top 10, designed for CI/CD integration and detailed reporting.
Offline security checklist & report generator with 200+ tests across web, cloud, WiFi, firmware, and AI security domains.
A comprehensive automated testing framework for detecting API security vulnerabilities based on the OWASP API Security Top 10. The OWASP API Security Testing Framework (ASTF) helps security professionals and developers identify vulnerabilities in their APIs through automated testing. Built with enterprise needs in mind, it provides detailed security analysis and integrates with modern CI/CD pipelines.
# Run a basic scan
java -jar target/api-security-testing-framework-1.0-SNAPSHOT.jar scan \
--target https://api.example.com \
--auth-header "Authorization: Bearer YOUR_TOKEN"