API penetration testing tool (Penterep tool)
Project description
PTAPITESTER
PTAPITESTER is a security testing tool for identifying vulnerabilities in different APIs
Supported APIs
PTAPITESTER implements modules for testing the security of the following APIs:
- REST
- GraphQL
- XML-RPC
- SOAP
Installation
pip install ptapitester
Adding to PATH
If you're unable to invoke the script from your terminal, it's likely because it's not included in your PATH. You can resolve this issue by executing the following commands, depending on the shell you're using:
For Bash Users
echo "export PATH=\"`python3 -m site --user-base`/bin:\$PATH\"" >> ~/.bashrc
source ~/.bashrc
For ZSH Users
echo "export PATH=\"`python3 -m site --user-base`/bin:\$PATH\"" >> ~/.zshrc
source ~/.zshrc
Usage examples
ptapitester -u htttps://www.example.com/
Options
[API_TYPE] Specify the target API for testing
GRAPHQL Module for GRAPHQL API testing
SOAP Module for SOAP API testing
XMLRPC Module for XMLRPC API testing
REST Module for REST API testing
-v --version Show script version and exit
-h --help Show this help message and exit
-j --json Output in JSON format
-u --url <URL> Connect to URL
-r --redirects Allow redirects
Dependencies
ptlibs
ptthreads
PyYAML
License
Copyright (c) 2025 Penterep Security s.r.o.
ptapitester is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
ptapitester is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with ptapitester. If not, see https://www.gnu.org/licenses/.
Warning
You are only allowed to run the tool against the websites which you have been given permission to pentest. We do not accept any responsibility for any damage/harm that this application causes to your computer, or your network. Penterep is not responsible for any illegal or malicious use of this code. Be Ethical!
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file ptapitester-0.0.7.tar.gz.
File metadata
- Download URL: ptapitester-0.0.7.tar.gz
- Upload date:
- Size: 289.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.13
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
fce7000b1843797b01161d4b07314e0f997b0c5fc92db333b0723f5de98cdd42
|
|
| MD5 |
a1432fcc8f74ea3ee9886e0d8c40052b
|
|
| BLAKE2b-256 |
78d1cf32cc9d756083c51cac7f4267cecdbdf24e5847e98ca66cc8e32927ad78
|
File details
Details for the file ptapitester-0.0.7-py3-none-any.whl.
File metadata
- Download URL: ptapitester-0.0.7-py3-none-any.whl
- Upload date:
- Size: 362.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.13
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
3c11905cfdc2222c9ad051e4ca5d9a356c475215034744a2128238c96fe0aa0b
|
|
| MD5 |
6707167a1a63b530f8475ee59a1d6cd3
|
|
| BLAKE2b-256 |
5a5a39457f49c769650936fb8eca8afdc3cfc52c2daf1c58fc1279e37d149fdd
|