Api Security
Showing 32 of 32 projects
A secrets scanning tool that discovers, classifies, validates, and analyzes leaked credentials across multiple sources.
A secrets scanning tool that discovers, classifies, validates, and analyzes leaked credentials across multiple sources.
A comprehensive checklist of security countermeasures for designing, testing, and releasing secure APIs.
OpenID Certified OAuth 2.0 and OpenID Connect server optimized for low-latency, high throughput, and cloud-native deployments.
A Go implementation of JSON Web Tokens (JWT) for signing, verifying, parsing, and generating tokens.
A PHP library for creating, parsing, and validating JSON Web Tokens (JWT) and JSON Web Signatures (JWS).
A Laravel middleware package for handling Cross-Origin Resource Sharing (CORS) headers and pre-flight requests.
A Ruby gem that provides OAuth 2 provider functionality for Ruby on Rails and Grape applications.
Open source API development platform for managing, authenticating, and analyzing API keys at scale.
A comprehensive tutorial and example project for implementing JSON Web Token (JWT) authentication in web apps.
A curated collection of tools, frameworks, and resources for building and managing RESTful HTTP+JSON APIs.
A GraphQL middleware library for creating a flexible and performant permission layer with smart caching.
Token-based authentication for Rails JSON APIs, seamlessly integrated with Devise and multiple client libraries.
Atomic and non-atomic counters and rate limiting tools for Node.js, Deno, and browsers to protect from DoS and brute force attacks.
A token-based authentication library for Elixir applications, supporting JWT and custom tokens.
An open-source, enterprise-grade Web Application Firewall library written in Go, compatible with ModSecurity SecLang rulesets.
A secure, modern alternative to JWT for creating and verifying platform-agnostic security tokens.
A Rack middleware that provides Cross-Origin Resource Sharing (CORS) support for Rack-compatible web applications.
ASP.NET Core middleware for IP and client-based rate limiting to protect Web APIs and MVC apps.
A Go middleware for rate-limiting HTTP requests using token bucket algorithm with flexible key selection.
An automated security testing framework for REST APIs that detects vulnerabilities like SQL injection, XSS, and CSRF.
A Symfony bundle that provides JWT (JSON Web Token) authentication for API applications.
A complete Go implementation of JOSE (JWA/JWE/JWK/JWS/JWT) for signing, encryption, and key management.
An OAuth 2.0 bridge for Laravel and Lumen frameworks, now deprecated for Laravel 5.3+.
A dead simple rate limit middleware for Go with a store-based approach and support for multiple HTTP frameworks.
A Rails API authentication gem using JSON Web Tokens (JWT) for seamless token-based authentication.
A Rust library for encoding and decoding JSON Web Tokens (JWT) with support for multiple algorithms and flexible validation.
A rate limiting library for Starlette and FastAPI applications, adapted from flask-limiter.
A Go library for implementing OAuth2 authorization and token servers with support for PKCE.
A Symfony bundle that adds CORS headers to responses and handles preflight requests with per-URL configuration.
An OpenID Foundation-certified OpenID Connect client and server library for Go, designed for ease of use.
A machine learning security engine that preemptively prevents web app and API threats using supervised and unsupervised models.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.