Fuzzapi

LSE toolsLSE toolsFuzzapi (192)Fuzzapi (192)

Tool and Usage

Fuzzapi is a security tool to test a REST API using fuzzing. It can be used for security assessments and penetration tests.

Usage and audience

Fuzzapi is commonly used for application fuzzing or application testing. Target users for this tool are developers, pentesters, and security professionals.

Features

  • Fuzzapi is written in Ruby
  • Web interface

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + The source code of this software is available

History and highlights

  • Demo at Black Hat USA 2017 Arsenal

Author and Maintainers

Fuzzapi is under development by Lalith Rallabhandi.

Installation

Supported operating systems

Fuzzapi is known to work on Linux.

Dependencies

Several dependencies are required to use Fuzzapi.

  • API_Fuzzer
  • bootstrap
  • coffee-rails
  • devise
  • devise-bootstrap-views
  • highcharts-rails
  • jbuilder
  • jquery-rails
  • newrelic_rpm
  • pg
  • puma
  • rails
  • Redis
  • rollbar
  • sass-rails
  • sdoc
  • sidekiq
  • sinatra
  • turbolinks
  • uglifier

Fuzzapi alternatives

Similar tools to Fuzzapi:

64

Susanoo

Susanoo is a security tool to test the security of a REST API. With this focus, it goes beyond the typical attack surface of a web application.

64

0d1n

0d1n is a security tool to perform fuzzing of web applications and discover potential security issues. It is commonly used during security assignments.

63

afl

American fuzzy lop, or afl, is a security-oriented fuzzer. It helps with testing software to find unexpected results within applications.

See all alternatives tools for Fuzzapi »

Found an improvement? Become an influencer and submit an update.
Project details
Latest releaseNo release found
LicenseMIT

Project health

68
This score is calculated by different factors, like project age, last release date, etc.

Links

GitHub iconFuzzapi GitHub project
Twitter icon@Fuzzapi0x00

Categories

This tool is categorized as a API security testing tool.

Related terms