JSpider is a smart crawler for hidden endpoints. It crawls and extracts hidden API endpoints and URLs from JavaScript files and HTML source code — all directly in your browser.

A tool for detecting http request smuggling vulnerabilities.

This is a API Security Scanner with panel

Open source tool to perform vulnerability scanning using Python and NMAP.

A comprehensive Swagger UI version detection and vulnerability scanner written in Go.

a versatile tool inspired by Postman that simplifies the process of testing and exploring APIs.

A Kali-friendly tool to scan for leaked or exposed API keys and identify which service they belong to, using over 1000 known patterns.