Noir

Attack surface detector that identifies endpoints by static analysis.

Github • Documentation • OWASP Project

brew install noir

OWASP Noir is an open-source project specializing in identifying attack surfaces for enhanced whitebox security testing and security pipeline. This includes the capability to discover API endpoints, web endpoints, and other potential entry points within source code for thorough security analysis.

This tool was developed using Crystal. Initially started as my personal project in August 2023, it became an OWASP project in June 2024, co-led by me and ksg.

• 2023.08
  Started as my personal project

  ---

• ---

  2024.06
  Joined OWASP and renamed to OWASP Noir