JSpider is a smart crawler for hidden endpoints. It crawls and extracts hidden API endpoints and URLs from JavaScript files and HTML source code — all directly in your browser.

A tool for detecting http request smuggling vulnerabilities.

This is a API Security Scanner with panel

A comprehensive Swagger UI version detection and vulnerability scanner written in Go.

Open source tool to perform vulnerability scanning using Python and NMAP.

a versatile tool inspired by Postman that simplifies the process of testing and exploring APIs.

A Kali-friendly tool to scan for leaked or exposed API keys and identify which service they belong to, using over 1000 known patterns.

Advanced web crawler for recon, OSINT, API discovery, JS parsing & WAF-friendly crawling.