API

API Security

GraphQL Voyager

GraphQL Voyager: Visualize any GraphQL API as an interactive graph, aiding in understanding and exploration of its schema and relationships.

API

API SecurityApplication Security

Visit Website

GraphQLmap

Details

GraphQLmap is a scripting engine for GraphQL endpoint pentesting, automating queries and fuzzing for vulnerabilities.

API

API Security

Visit Website

InQL

Details

InQL is a Burp Suite extension for advanced GraphQL testing, offering vulnerability detection and customizable scans.

API

Application Security

Visit Website

Interactsh

Details

Interactsh is a tool and service for capturing and handling out-of-band interactions during security testing.

Internal Web API

Application SecurityAPI Security

Visit Website

JWT Debugger

Details

JWT Debugger is a web application to create, encode, decode, and debug JWT (JSON Web Tokens).

Web API Static Analysis

API SecurityReconnaissance

Visit Website

Kiterunner

Details

Kiterunner is a contextual content discovery tool for modern web applications and APIs, excelling in route/endpoint bruteforcing.

API Bruteforce Web

Reconnaissance

Visit Website

LeakInsight API

Details

LeakInsight API is a data leak detection service that helps developers and businesses identify leaked credentials and security risks across a vast database.

API

Application Security

Visit Website

Payloads All The Things

Details

A comprehensive collection of payloads and bypasses for web application security testing and exploitation.

Web Bug Bounty API External

Application SecurityAPI Security

Visit Website

Postman

Details

Postman: The leading API platform for building and using APIs. Streamline collaboration and simplify the API lifecycle.

API Web Mobile

API Security

Visit Website

Prism

Details

Prism is an open-source HTTP mock and proxy server that accelerates API development with realistic mock servers powered by OpenAPI documents.

API

API SecurityCloud Security

Visit Website

RESTler

Details

RESTler is a stateful REST API fuzzing tool for automatically testing cloud services and finding security and reliability bugs.

API Bug Bounty

Reconnaissance

Visit Website

Shodan

Details

Shodan is a search engine for Internet-connected devices, enabling users to discover and monitor exposed services and gain Internet intelligence.

API Web External

Tag

Explore by tags

All

AI

Bruteforce

Bug Bounty

C2

Certifications

Classification

Cloud

DoS

External

Internal

Mobile

OSINT

Phishing

Physical

Report

Services

Static Analysis

Training

Vulnerability Intelligence

Web

Wireless

GraphQL Voyager

GraphQLmap

InQL

Interactsh

JWT Debugger

Kiterunner

LeakInsight API

Payloads All The Things

Postman

Prism

RESTler

Shodan