awesome-api-security-essentials
Awesome API Security: A Curated Collection of Resources for Bulletproof API Protection!
https://github.com/JBAhire/awesome-api-security-essentials
Last synced: 12 days ago
JSON representation
-
🏗 Specifications
- API Blueprint - level API design language for describing and designing APIs. |
- RAML (RESTful API Modeling Language) - readable format. |
- WS-Security - based web services. |
- WS-Security - based web services. |
- OpenID Connect - on. |
- HAL (Hypertext Application Language)
-
📣 Stay Informed
- Twitter - security-community/).
-
🔐 Vulnerable APIs
- Google - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | Google | Yes |
- IBM
- GitHub
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | [erev0s](https://github.com/erev0s) | Yes |
- GitHub
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | Appsecco | Yes |
- GitHub
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | OWASP | Yes |
- GitHub
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | Webpwnized | Yes |
- GitHub
- GitHub - commerce web app | SQL Injection, Broken Authentication, Cross-site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | Rapid7 | Yes |
- SourceForge - commerce web app for security training | SQL Injection, Broken Authentication, Sensitive Data Exposure, Insecure Deserialization, Broken Access Control, Security Misconfiguration | [Badstore.net](http://Badstore.net) | Yes |
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | OWASP | Yes |
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | Hackademic | Yes |
- SourceForge - commerce web app for security training | SQL Injection, Broken Authentication, Sensitive Data Exposure, Insecure Deserialization, Broken Access Control, Security Misconfiguration | [Badstore.net](http://Badstore.net) | Yes |
- IBM
- GitHub - site Scripting (XSS), Cross-site Request Forgery (CSRF), Insecure Direct Object Reference (IDOR) | OWASP | Yes |
-
🗂 Wikis & Collections
Programming Languages
Categories
Sub Categories
Keywords
owasp
5
security
5
api
4
appsec
4
owasp-top-10
4
owasp-top-ten
3
docker
2
javascript
2
nodejs
2
vulnerabilities
2
vulnerable
2
training
1
hacktoberfest-accepted
1
exercises
1
cors
1
bugbounty
1
appsec-tutorials
1
web
1
apitop10
1
vulnerable-web-app
1
security-tools
1
api-rest
1
jwt
1
oauth2
1
apisecurity
1
apollo
1
graphql
1
owasp-zap
1
graphql-yoga
1
permissions
1
nodegoat
1
server
1
heroku
1
cybersecurity
1
application
1
10
1
ruby-on-rails
1
ruby
1
rails
1
owasp-top
1
vulnapp
1
pentesting
1
hacking
1
ctf
1
application-security
1
24pullrequests
1
vulnerable-apps
1
penetration-testing
1
testing
1
top
1