Professional Documents
Culture Documents
OWASP ZAP
Burp Suite
Postman
Postman is an API platform for developers to design, build, test and iterate their
APIs.
EthicalCheck
FoxyProxy
mitmproxy
mitmproxy2swagger
Kiterunner
Arjun
TruffleHog
Nikto
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests
against web servers for multiple items, including over 6700 potentially dangerous
files/programs, checks for outdated versions.
nmap
Nmap is a powerful tool for scanning ports, searching for vulnerabilities,
enumerating services, and discovering live hosts. For API discovery, you should run
two Nmap scans in particular: general detection and all port.
OWASP Amass
The OWASP Amass Project performs network mapping of attack surfaces and external
asset discovery using open source information gathering and active reconnaissance
techniques.
DNSdumpster
DNSdumpster is a free domain research tool that can discover hosts related to a
domain. Finding visible hosts from the attackers perspective is an important part
of the security assessment process.
The Google Hacking Database (GHDB) is a compiled list of common mistakes web/server
admins make, which can be easily searched by using Google.
Gobuster
Gobuster is a tool used to brute-force URIs (directories and files) in web sites,
DNS subdomains, Virtual Host names on target web servers, Open Amazon S3 buckets.
Burp Intruder is a tool for automating customized attacks against web applications.
It can be used to perform a huge range of tasks, from simple brute-force guessing
of web directories through to active exploitation of complex blind SQL injection
vulnerabilities.
Wfuzz
Wfuzz is a tool designed for bruteforcing Web Applications. It can be used to find
resources not linked directories, servlets, scripts, etc., bruteforce GET and POST
parameters for checking different kind of injections (SQL, XSS, LDAP,etc),
bruteforce Forms parameters (User/Password), Fuzzing, etc.
JWT_Tool
JWT_Tool is a toolkit for testing, tweaking and cracking JSON Web Tokens.
sqlmap
sqlmap is an open source penetration testing tool that automates the process of
detecting and exploiting SQL injection flaws and taking over of database servers.
API Research Sites
Github
filename:swagger.json
extension:.json
Shodan
Shodan is a search engine that lets users search for various types of servers
connected to the internet using a variety of filters. You can use Shodan to
discover external-facing APIs and get information about your target’s open ports.
Wayback Machine
The Wayback Machine is a digital archive of the World Wide Web. This site allows
you to check out historical changes to your target and potentially previously
published APIs/endpoints.
Postman Explore
ProgrammableWeb
APIs Guru
Our goal is to create a machine-readable Wikipedia for Web APIs in the OpenAPI
Specification format.
RapidAPI Hub
Browse the best premium and free APIs on the world's largest API Hub.
Password Lists
Mentalist
The aim of the CUPP is to generate common passwords based on the input that you
will give for your target.
Rockyou.txt
Rockyou.txt is a common password list that is included in Kali Linux. This file is
located here: /usr/share/wordlists/rockyou.txt.gz
Training Labs
TryHackMe
Bookstore: https://tryhackme.com/room/bookstoreoc
IDOR: https://tryhackme.com/why-subscribe
GraphQL: https://tryhackme.com/room/carpediem1
HackTheBox
Craft
Postman
JSON
Node
Help