Projects in Awesome Lists tagged with api-security
A curated list of projects in awesome lists tagged with api-security .
https://github.com/jassics/security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
api-security application-security appsec appsec-tutorials aws-security azure-security cybersecurity cybersecurity-education devsecops-university gcp-security infosec pentesting security-testing study-guide study-plan study-planner
Last synced: 27 Jul 2025
https://github.com/smodnix/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
api-pentest api-security bug-bounty bugbounty bugbountytips infosec pentest security
Last synced: 02 May 2025
https://github.com/inonshk/31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
api-pentest api-security bug-bounty bugbounty bugbountytips infosec pentest security
Last synced: 14 Mar 2025
https://github.com/API-Security/APIKit
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
api-sec api-security apisec burp-extensions
Last synced: 10 May 2025
https://github.com/api-security/apikit
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
api-sec api-security apisec burp-extensions
Last synced: 15 May 2025
https://github.com/HolyBugx/HolyTips
A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
api api-security bugbounty bugbounty-writeups bugbountytips checklist pentest pentesting security web webapp websecurity writeups
Last synced: 11 Jul 2025
https://github.com/wallarm/gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
api-security bugbounty graphql-security grpc-security owasp rest-security security security-testing security-tools waf web-application-firewall web-application-security
Last synced: 14 May 2025
https://github.com/metlo-labs/metlo
Metlo is an open-source API security platform.
api-gateway api-pentest api-security application-security aws bugbounty bugbounty-tools cybersecurity infosec infosectools metlo monitoring pentest security vulnerabilities vulnerability-detection
Last synced: 14 May 2025
https://github.com/akto-api-security/akto
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
api-discovery api-security api-security-posture api-security-testing api-testing authentication authorization devsecops devsecops-pipeline hacktoberfest hacktoberfest2023 idor owasp-top-10 security security-testing sensitive-data-exposure threat-detection
Last synced: 23 Jan 2026
https://github.com/blst-security/cherrybomb
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
api api-security best-practices blst business-logic cli cyber cybersecurity firecracker http open-source openapi openapi3 security security-tools web-sec-scanner web-security websecurity
Last synced: 10 Apr 2025
https://github.com/openappsec/openappsec
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
api-security application-security appsec devsecops kong kubernetes nginx nginx-proxy-manager owasp owasp-top-ten rate-limiting security-tools threat-prevention waf web-application-firewall
Last synced: 29 Dec 2025
https://github.com/safe3/uuwaf
An industry-leading free, high-performance, AI and semantic technology Web Application Firewall and API Security Gateway (WAAP) - UUSEC WAF.
api-gateway api-security application-security data-mask ddos hips modsecurity nginx owasp rasp security sql-injection uusec uusec-waf uuwaf waap waf web-application-firewall web-security-gateway xss
Last synced: 18 Jun 2025
https://github.com/zeyad-azima/offensive-resources
A Huge Learning Resources with Labs For Offensive Security Players
api api-security cloud-security cybersecurity hack hacking infrastructure learning mobile mobile-security offensive offensive-security owasp owasp-top-10 red-team red-teaming redteam security web web-security
Last synced: 19 Jan 2026
https://github.com/dsopas/MindAPI
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
api-security hacking methodology mindapi mindmap
Last synced: 11 Jul 2025
https://github.com/Zeyad-Azima/Offensive-Resources
A Huge Learning Resources with Labs For Offensive Security Players
api api-security cloud-security cybersecurity hack hacking infrastructure learning mobile mobile-security offensive offensive-security owasp owasp-top-10 red-team red-teaming redteam security web web-security
Last synced: 11 Jul 2025
https://github.com/owasp/offat
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
api-hacking api-rest api-security api-security-testing offat owasp
Last synced: 14 Jan 2026
https://github.com/OWASP/OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
api-hacking api-rest api-security api-security-testing offat owasp
Last synced: 10 May 2025
https://github.com/wallarm/api-firewall
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
api api-firewall api-gateway api-security api-waf api-wrapper apigateway firewall openapi openapi-security openapi-spec openapi-specification proxy rest-security security security-tools swagger waf web-application-firewall web-application-security
Last synced: 14 May 2025
https://github.com/apiclarity/apiclarity
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
api-security envoy istio k8s kubernetes microservice microservices openapi openapi-spec openapi-specification service-mesh shadow-api swagger wasm zombie-api
Last synced: 02 May 2025
https://github.com/openclarity/apiclarity
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
api-security envoy istio k8s kubernetes microservice microservices openapi openapi-spec openapi-specification service-mesh shadow-api swagger wasm zombie-api
Last synced: 23 Oct 2025
https://github.com/adhocore/php-jwt
Ultra lightweight, dependency free and standalone JSON web token (JWT) library for PHP5.6 to PHP8.4+. This library makes JWT a cheese. It is a minimal JWT integration for PHP.
adhocore api-auth api-security json-web-signature json-web-token json-web-token-php jwt jwt-auth jwt-authentication oauth2 php php-jwt php7 php8
Last synced: 14 May 2025
https://github.com/TPIsoftwareOSPO/digiRunner-Open-Source
digiRunner: Your API Gateway for Microservices
api api-gateway api-key api-key-authentication api-key-management api-management api-monitoring api-proxy api-security apim cloud-native docker gateway hierarchical-structure kubernetes lightweight microservices open-source performance reverse-proxy
Last synced: 20 Nov 2025
https://github.com/yogsec/api-pentesting-tools
API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).
api api-bug-bounty api-cybersecurity api-hacking api-kali-linux api-pentesting-tool api-pentesting-tools api-sec api-security api-security-testing api-security-tools api-testing-tools api-tools cybersecurity cybersecurity-education ethical-hacking-tools osint python tools
Last synced: 09 Apr 2025
https://github.com/cerberauth/vulnapi
API Security Vulnerability Scanner designed to help you secure your APIs.
api-security api-security-testing api-testing authentication authorization cybersecurity dast graphql jwt openapi owasp-top-10 security security-scanner security-tools vulnerability-scanners
Last synced: 28 Aug 2025
https://github.com/piomin/sample-spring-oauth2-microservices
some examples that show basic and more advanced implementations of oauth2 authorization mechanism in spring-cloud microservices environment
api-security authorization jwt microservices-security oauth oauth2 spring-boot spring-cloud spring-security spring-security-oauth2 zuul
Last synced: 10 Jun 2025
https://github.com/abunuwas/fencer
Automated API security testing
api api-security api-security-testing graphql jwt oauth2 openapi owasp-top-10 rest-api security sql-injection testing
Last synced: 05 Jul 2025
https://github.com/approov/shipfast-api-protection
Learn practical Mobile and API security techniques: API Key, Static and Dynamic HMAC, Dynamic Certificate Pinning, and Mobile App Attestation.
api api-client api-key api-key-authentication api-keys api-secret api-security api-server apis approov certificate-pinning hmac-authentication mobile mobile-app mobile-app-attestation mobile-app-security mobile-development mobile-security mobile-security-framework pinning
Last synced: 23 Jun 2025
https://github.com/escape-technologies/graphql-security-academy
🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!
api-security certification community education graphql hacktoberfest hacktoberfest2023 learning security
Last synced: 27 Apr 2025
https://github.com/ionutbalosin/java-application-security-practices
Application security best practices and code implementations for Java developers. This project is intended for didactic purposes only, supporting my training course.
api-security authorization-code-flow authorization-code-flow-with-pkce client-credentials-flow cors csp dast java-process-security json-web-key-set jwks oauth-grant-types password-flow roles-based-access-control sast sca security-design-principles security-logging security-testing token-introspection
Last synced: 22 Apr 2025
https://github.com/dotnet-labs/herokucontainer
Dockerized ASP.NET Core Web API app in Heroku
api api-security auth authentication authorization container docker dotnet dotnet5 dotnetcore file-upload swagger webapp
Last synced: 11 Apr 2025
https://github.com/wallarm/docker-wallarm-node
⚡️ Official docker image for Wallarm Node. API security platform agent.
api-firewall api-security application-firewall envoyproxy nginx openapi-security rest-security security security-audit security-automation security-scanner security-tools waf web-application-firewall
Last synced: 10 Jun 2025
https://github.com/approov/appauth-oauth2-books-demo
A companion repo for the blog article: https://blog.approov.io/adding-oauth2-to-mobile-android-and-ios-clients-using-the-appauth-sdk
api-security approov approov-demo mobile mobile-app mobile-security
Last synced: 28 Apr 2025
https://github.com/jessety/simple-hmac-auth
Protocol specification and Node library designed to make building APIs that use HMAC signatures simple
api-security hmac-authentication nodejs request-signatures request-signing simple-hmac-auth
Last synced: 07 May 2025
https://github.com/paulveillard/cybersecurity-api-security-checklist
An ongoing collection of awesome software, API libraries, checlists, best guidelines and resources and most important security countermeasures when designing, testing, and releasing your API.
api-authentication api-authorizarion api-automation api-blueprint api-call api-client api-communication api-consumer api-design api-development-platform api-documentation api-documentation-tool api-endpoints api-generator api-security api-server secure-api
Last synced: 06 Jan 2026
https://github.com/wallarm/product-documentation
Wallarm Product Documentation
api-security docs waap waf wallarm
Last synced: 10 Jun 2025
https://github.com/novatecconsulting/developer-security-training
All Labs of the Security for Developers Training
api-gateway api-security appsec challenges devsecops encryption graphql grpc hacking owasp owasp-juice-shop rest-api security security-flaws sqlinjection training-labs vulnerabilities vulnerability xss-injection
Last synced: 14 May 2025
https://github.com/Snoopy-Sec/Secret-API-Keys
Secret Detection API Keys
2022 api-security credentials regex secrets security yaml
Last synced: 12 Mar 2025
https://github.com/codevate/public-api-blog-post-example
A companion project for our blog post describing how to secure public APIs client-side.
api-security oauth2 oauth2-server php public-api symfony-api symfony-application symfony2
Last synced: 10 Apr 2025
https://github.com/brahmlower/prefixed-api-key
A Rust module for generating Prefixed API Keys
api-security prefixed-api-key rust
Last synced: 14 Apr 2025
https://github.com/plumsydev/neptune-waf.app
Neptune is a Web Application Firewall that you can use to protect your domains against common attacks (XSS, SSRF, SQLI, Path Traversal) and many others, it also can be used to hide your web server backend IP and protect against most DDoS attacks, come visit us !
api api-security application ddos firewall http-proxy letsencrypt neptune neptunewaf owasp security tcp-proxy waap waf web web-application-firewall xss
Last synced: 13 Jan 2026
https://github.com/artioml/f5-app-sec
:sunglasses: Succeeding with application security
anti-bot api-security app-security bados f5-asm f5-awaf l7-ddos owasp waf
Last synced: 09 Oct 2025
https://github.com/elliotsecops/api-security-scanner
The API Security Scanner is a powerful tool designed to help developers and security professionals assess the security posture of their APIs. // API Security Scanner es una potente herramienta diseñada para ayudar a los desarrolladores y profesionales de la seguridad a evaluar el nivel de seguridad de sus APIs.
api-security cybersecurity cybersecurity-tools ethical-hacking pentesting security-audit
Last synced: 17 Sep 2025
https://github.com/abunuwas/api-auth-workshop
Code for the Workshop Securing APIs with OAuth in Python
api-security authorization fastapi json-web-token jwt oauth2
Last synced: 05 Jul 2025
https://github.com/adefwebserver/blazorfileuploadswagger
Blazor File Upload using Web API and Swagger
api-security blazor dotnet-core dotnet6 file-upload jwt-authentication swagger
Last synced: 15 Oct 2025
https://github.com/swap76/enigma
Javascript GraphQL and REST API Encryption API
api-security apollo-graphql cryptojs https rest-api
Last synced: 31 Aug 2025
https://github.com/jessety/simple-hmac-auth-express
Express middleware for creating APIs that implement hmac signatures
api-security express express-middleware hmac-authentication request-signatures request-signing simple-hmac-auth
Last synced: 20 Oct 2025
https://github.com/psnappz/shadowguard
Fast & Reliable API Security Engine
api-security firewall security
Last synced: 15 Apr 2025
https://github.com/dmontgomery40/securitylens
An open-source security analysis platform for education and vulnerability discovery.
api-security code-vulnerability-dataset cve-scanning cwe educational github-security mitre red-team-tools security-tools vulnerability-assessment vulnerability-detection vulnerability-scanners
Last synced: 20 Mar 2025
https://github.com/approov/quickstart-elixir-phoenix-absinthe-graphql-token-check
Approov integration example quickstarts for the Elixir Phoenix framework with the Absinthe library for GraphQL
api api-security approov approov-backend approov-bakend-quickstart approov-quickstart elixir elixir-phoenix
Last synced: 22 Aug 2025
https://github.com/approov/quickstart-nodejs-express-token-check
An Appoov token integration example for NodeJS. Article: https://blog.approov.io/approov-integration-in-a-nodejs-express-api
api api-node api-security apis approov approov-backend approov-backend-quicksart approov-demo approov-quickstart approov-token jwt jwt-api jwt-auth jwt-authentication jwt-tokens node-express node-js nodejs nodejs-express tokens
Last synced: 28 Apr 2025
https://github.com/approov/quickstart-php-token-check
Quickstart Approov integration example for PHP without depending on a framework.
api api-security approov approov-backend approov-backend-quicksart approov-integration approov-quickstart backend php security
Last synced: 18 Jul 2025
https://github.com/approov/quickstart-ruby-token-check
Quickstart Approov integration example for Ruby without depending on a framework.
api api-security approov approov-backend approov-backend-quicksart approov-integration approov-quickstart security
Last synced: 27 Jun 2025
https://github.com/4xyy/mobile-penetration-testing-tool
AI-Powered Mobile Application Penetration Testing Tool
ai-security android api-security apk-analysis cybersecurity dynamic-analysis ethical-hacking frida ios ipa-analysis jadx mobile-app-security mobile-security network-monitoring penetration-testing security-research security-testing security-tool static-analysis vulnerability-scanner
Last synced: 08 Jan 2026
https://github.com/anbkit/fise
A high-performance, keyless, rule-based envelope for protecting web/API/stream data.
api-security browser client-side-security crypto encryption fise frontend-security javascript npm-package obfuscation security typescript-library web-security webapp-security
Last synced: 13 Jan 2026
https://github.com/approov/quickstart-php-laravel-token-check
Quickstart Approov integration example for the PHP Laravel framework
api api-key api-key-authentication api-keys api-php api-secret api-secure api-security api-server approov approov-cloud-service approov-quickstart laravel laravel-api laravel-api-access-token laravel-api-auth laravel-api-authentication php php-backend-server php-laravel
Last synced: 28 Apr 2025
https://github.com/jessety/simple-hmac-auth-objc
Objective-C iOS framework for interfacing with APIs that implement hmac signatures
api-security hmac-authentication ios objective-c request-signatures request-signing simple-hmac-auth
Last synced: 23 Feb 2025
https://github.com/mikaelvesavuori/mikrosign
Lightweight HMAC request signing with zero dependencies.
Last synced: 17 Jun 2025
https://github.com/dexcompiler/request-signatures
Secure API authentication mechanism using Request Signatures
api-key-management api-keys api-security authentication middleware
Last synced: 15 Aug 2025
https://github.com/escape-technologies/escape-rules
A community-driven list of custom Escape rules. Test your API security with rules that automatically adapt for you.
api-security api-security-testing escape-custom-rules-templates escape-rules security vulnerability-detection
Last synced: 26 Feb 2025
https://github.com/approov/appauth-oauth2-approov
Strengthens OAuth2 authorization by using mobile app attestation
api-security approov approov-mobile-quickstart mobile mobile-security
Last synced: 28 Apr 2025
https://github.com/jessety/simple-hmac-auth-koa
Koa middleware for creating APIs that implement hmac signatures
api-security hmac-authentication koa koa-middleware request-signatures request-signing simple-hmac-auth
Last synced: 08 Aug 2025
https://github.com/approov/quickstart-nodejs-koa_shapes-api
An Approov Token integration example for NodeJS with Koa.
api api-security approov approov-backend approov-backend-quicksart approov-integration approov-quickstart nodejs security
Last synced: 24 Aug 2025
https://github.com/nsubhadipta/api-guardian-package
The ultimate VIP bouncer for your API. Only the right user agents and proper requests get in. Everyone else gets a 403.
api-guardian-package api-security middleware nodejs npm-package
Last synced: 13 Aug 2025
https://github.com/hackfutsec/subghost
SubGhost is a powerful subdomain discovery tool. It helps you discover hidden or less visible subdomains for a given domain using public API services. The tool is designed to be simple to use while offering great flexibility, such as the ability to choose the output format for results.
api-security cloud-security collaboration-and-data-sharing credential-and-secret-management cybersecurity-automation dns-amplification-attacks dns-analysis exploitation-and-pentesting internet-infrastructure-analysis machine-learning-and-artificial-intelligence passive-reconnaissance phishing-and-attack-reconnaissance privacy-and-anonymity python security-monitoring-and-incident-response subdomain-reconnaissance web-scraping-and-data-extraction
Last synced: 15 Mar 2025
https://github.com/ind4skylivey/s1bpassport-guard
Advanced OAuth2 token monitoring, threat detection & forensics for Laravel Passport. Track tokens, detect brute-force attacks, analyze client activity from CLI.
analitics api-security audit authentication cli cybersecurity devops forensics laravel laravel-package laravel-passport monitoring outh2 php red-team security symfony-console threat-detection token-management
Last synced: 13 Jan 2026
https://github.com/approov/quickstart-kong_approov-plugin
Kong plugin to check Approov tokens.
api api-gateway api-secret api-security apigateway approov approov-demo approov-plugin approov-token jwt jwt-auth jwt-authentication jwt-tokens mobile mobile-api mobile-app-security mobile-first mobile-security security
Last synced: 30 Jun 2025
https://github.com/approov/quickstart-nodejs-koa-token-check
Quickstart Approov integration example for the NodeJS Koa framework.
api api-security approov approov-backend approov-backend-quicksart approov-integration approov-quickstart koa node nodejs security
Last synced: 26 Feb 2025
https://github.com/approov/quickstart-python-django-token-check
Quickstart Approov integration example for the Python Django framework
api api-security approov approov-backend approov-backend-quicksart approov-integration approov-quickstart backend django python security
Last synced: 14 Jun 2025
https://github.com/911abaddon/securityheaderx
Instant web security analysis: detect vulnerabilities in HTTP headers, TLS, and CORS with a single scan
api-security appsec cloud-security container-security cybersecurity devsecops http-headers javascript nodejs owasp penetration-testing privacy security security-headers security-tools web-security
Last synced: 07 May 2025
https://github.com/youssefwaelmohamedlotfy/duendesecureaspnet
Duende IdentityServer Demo of Securing APIs.
api-security dotnet6 duende-identityserver
Last synced: 24 Feb 2025
https://github.com/salmanfxrsi/causebridge-backend
Backend for the CauseBridge platform, built with Node.js and Express. It handles user authentication, CRUD operations for volunteer posts, and MongoDB data storage. Uses JWT for secure routes and environment variables for sensitive data management. Provides a RESTful API with CORS support.
api-development api-security backend cors crud-operations environment-variables express firebase jwt-authentication mongodb mongodb-atlas node-api nodejs rest-api user-authentication volunteer-management
Last synced: 30 Dec 2025
https://github.com/deepraj1729/devsecops
All in One repo about my journey in DevSecOps
api-security cloud-security devops gcp security web-security
Last synced: 28 Feb 2025
https://github.com/approov/quickstart-ruby-on-rails-token-check
Approov integration example for the Ruby on Rails framework
api api-security approov approov-backend approov-bakend-quickstart approov-quickstart backend security
Last synced: 26 Feb 2025
https://github.com/approov/quickstart-python-fastapi-token-check
Quickstart Approov integration example for the Python FastAPI framework
api api-security approov approov-api approov-backend-quicksart approov-integration approov-quickstart approov-token backend security
Last synced: 26 Feb 2025
https://github.com/approov/approov-android-sdk
Direct release of Android SDK versions for package inclusion
android android-sdk android-security api-security approov approov-android-sdk approov-sdk mobile mobile-app-security mobile-security
Last synced: 26 Feb 2025
https://github.com/dhouib-mohamed/quoxy
Quoxy is an API authenticator proxy using Go and SQL, featuring secure token management via Cron jobs and a reverse proxy for authenticated requests.
api-gateway api-limiter api-security go proxy sql subscription token-management
Last synced: 20 Jul 2025
https://github.com/jessety/simple-hmac-auth-swift
Swift framework for interfacing with APIs that implement HMAC signatures
api-security hmac-authentication ios request-signatures request-signing simple-hmac-auth swift
Last synced: 13 Jun 2025
https://github.com/jessety/simple-hmac-auth-php
PHP library for interfacing with APIs that implement hmac signatures
api-security hmac-authentication php request-signatures request-signing simple-hmac-auth
Last synced: 23 Feb 2025
https://github.com/achrefdevtn/jwt-auth-starter
A Node.js and Express application showcasing JWT authentication with MySQL. Includes secure user registration, login, token-based protection for routes, and centralized error handling with Winston. Perfect for learning and implementing JWT in a real-world setting.
api-security authentication expressjs jwt mysql nodejs
Last synced: 30 Dec 2025
https://github.com/nanaelie/http-headers-collection
EN: A simple and practical collection of HTTP headers with recommended values, effects, and related security risks. FR : Une collection simple et pratique d’en-têtes HTTP avec leurs valeurs recommandées, effets et risques de sécurité associés.
api-security best-practices cheatsheet collection devsecops headers headers-collection http http-headers infose markdown open-source security security-headers web web-dev web-security
Last synced: 19 Jun 2025
https://github.com/king04aman/pdf-extractor-api
PDF Extractor API is a FastAPI project for extracting information from PDFs. It includes user authentication, PDF uploading, and text extraction. The API supports secure PDF uploads, keyword-based extraction, and rate limiting.
api-security docker-compose doker fastapi invoice-management invoice-pdf jwt-auth jwt-authentication jwt-token pdf-processing pdf-processor python python3 rate-limiting sap
Last synced: 18 Jan 2026
https://github.com/copyleftdev/h4x0r_b41t
is a mischievously designed, high-tech honeypot API built to lure, confuse, and troll cyber-intruders. With its blend of structured, color-coded logging, randomized responses, and playful headers, H4X0R_B41T keeps hackers guessing while providing you with valuable insights.
api-security cyber-defense cybersecurity hacker-deterrent honeypot infosec prank-api threat-intelligence
Last synced: 14 Oct 2025
https://github.com/abhishektiwari/axioms-express-js
Axioms Javascript client for Express. Secure your Express APIs using Axioms authentication and authorization.
access-token api api-security authentication authorization axioms express-js oauth2 openid openid-connect
Last synced: 14 Oct 2025
https://github.com/lunzai/gobrute
A RESTful API brute-forcing tool in Go for ethical hacking practice. **Gobrute** is built for testing login passwords with multithreading, progress tracking, and customizable payloads, ideal for controlled environments like OWASP Juice Shop.
api-security api-security-testing brute-force cybersecurity ethical-hacking ethical-hacking-tools go golang infosec owasp owasp-juice-shop owasp-top-10 password-cracking password-testing pentesting rest-api security-testing security-tools
Last synced: 03 Apr 2025
https://github.com/mreshboboyev/api-rate-limiter
A robust and scalable API Rate Limiter implementation in .NET Core, supporting 4 algorithms (Fixed Window, Sliding Window, Token Bucket, Concurrency) with IP-based rate limiting. Built using Clean Architecture and integrated with Redis for distributed environments.
api-security clean-architecture concurrency fixed-window ip-based-rate-limiting middleware rate-limiting redis security sliding-window throttling token-bucket
Last synced: 05 Apr 2025
https://github.com/povzayd/api-checker
Validate API keys for various services with this Bash script 🚀
api-gateway api-key-validation api-keys api-management api-monitoring api-security api-testing api-testing-tool aws azure cloud-security continuous-deployment continuous-integration devops-tools devsecops github google-cloud heroku-api
Last synced: 09 Sep 2025
https://github.com/abdelrahman-hassany/django-rate-limit-api
A secure Django REST API for sending emails, protected against brute force with Django Ratelimit and custom Redis-based rate limiting.
api-security backend django django-rest-framework rate-limiting redis web-development
Last synced: 02 Jul 2025
https://github.com/coslynx/ai-powered-request-handler
AI-powered system efficiently manages and resolves user requests... Created at https://coslynx.com
ai-powered api-security api-wrapper code-generation developer-tools devops docker fastapi jwt language-model machine-learning mvp mvp-development openai-integration postgresql python python-backend request-handler software-development sqlalchemy
Last synced: 30 Dec 2025
https://github.com/approov/quickstart-mulesoft-api-gateway
Simple Approov integration for the Mulesoft API Gateway
api api-gateway api-security approov approov-backend approov-backend-quicksart approov-integration gateway security
Last synced: 26 Feb 2025
https://github.com/rickcontreras/telconova-supportsuite-auth-service
Telconova SupportSuite Auth Service is a Java-based microservice for secure user authentication. It supports JWT and role-based access control, offering a scalable and high-performance solution for access management.
api-security authentication-and-authorization authentication-service codespaces devcontainer docker java jwt microservice spring-boot
Last synced: 13 Oct 2025
https://github.com/salihcanaydogdu/spring-security
spring-security
api-security email-verification java mysql-database postman-api-test role-based-access-control security spring spring-security two-step-authentication
Last synced: 26 Jul 2025
https://github.com/yogsec/API-Pentesting-Tools
API Pentesting Tools are specialized security tools used to test and analyze the security of Application Programming Interfaces (APIs).
api api-bug-bounty api-cybersecurity api-hacking api-kali-linux api-pentesting-tool api-pentesting-tools api-sec api-security api-security-testing api-security-tools api-testing-tools api-tools cybersecurity cybersecurity-education ethical-hacking-tools osint python tools
Last synced: 28 Mar 2025
https://github.com/keshavabanda/micro-services
Exploring microservices in the real world - This is a sample project I was exploring recently with dockering..
api-security authentication express javascript jwt mongodb mongoose nodejs rest-api
Last synced: 30 Dec 2025
https://github.com/fly-playgroud/go-postman
an go postman lib
api api-security api-test openapi openapiv3 postman postman-api postman-collection
Last synced: 18 Jan 2026
https://github.com/abaasi256/binance-api-key-registration-bug-2025
Documentation of Binance P2P API endpoint inconsistency where valid API keys fail with -2008 error on specific endpoints
api api-backend api-bug-bounty api-key api-security api-test-automation api-testing backend-api binance binance-api binance-api-key-registration binance-bot binance-report binance-security cryptocurrency p2p-trading
Last synced: 22 Jul 2025
https://github.com/namuan/api-tools-web
Source code for https://www.webapis.xyz/ developed using Hugo and a custom theme
api api-development api-framework api-mocking api-monitoring api-security api-standards api-testing api-tools hugo-site static-website
Last synced: 28 Mar 2025
https://github.com/ahmetcakr/narchitecture-rentacar-api
This project is a monolith project which uses advanced techniques.
api-security elasticsearch in-memory-database logging role-based-authorization webapi
Last synced: 22 Feb 2025
https://github.com/aronno1920/netcore-webapi-owasp-api-security
Welcome to "OWASP API Security Top Ten and Beyond!" The objective of this course is to help students become API security professionals and to be able to identify and reduce API-related security risks. OWASP API Security Top Ten and Beyond! is meant to help improve the skills of bug bounty hunters, developers, penetration testers, organizational
api-security netcore owasp owasp-top-10 security webapi
Last synced: 20 Aug 2025
https://github.com/samanshafagh/python-fastapi-auth-microservice
Production-ready authentication microservice built with FastAPI. Features JWT auth, Google & GitHub OAuth2, role-based access control, PostgreSQL, Dockerized deployment, Alembic migrations, and 95%+ test coverage. Designed for secure, scalable backend systems.
api-security backend docker fastapi jwt microservice oauth2 postgresql pytest python sqlalchemy
Last synced: 31 Dec 2025
https://github.com/approov/quickstart-aws-api-gateway-v2
Simple Approov integration for the AWS API Gateway V2 (HTTP API)
api api-gateway api-security approov approov-backend approov-backend-quicksart approov-integration approov-quickstart aws gateway security
Last synced: 26 Feb 2025