Cyber Tool
API Griffer
A Python-based API fuzzing tool with a live demo target for discovering hidden REST-style routes, testing HTTP method behavior, and producing structured findings for authorized security testing.
Overview
API Griffer focuses on repeatable route discovery for REST-style APIs. It combines generated path candidates, multiple HTTP methods, noise filtering, and structured output so testing sessions can move from broad discovery to focused review.
Highlights
Built a Python CLI for API endpoint fuzzing and method-aware route discovery.
Added custom headers, query strings, request bodies, proxying, concurrency, and structured findings output.
Created a deployable sample web service for realistic API route discovery workflows.
Designed around authorized testing, OSWE-style methodology, and API gateway route mapping.
Workflow
Route Discovery
Build candidate paths from wordlists, test nested routes, and compare how endpoints respond across HTTP methods.
Reviewable Findings
Capture results in a structured format so interesting responses can be reviewed, repeated, and shared during authorized testing.
Demo Target
The companion sample service gives the tool a realistic target for demos, lab work, and regression checks.