A comprehensive API monitoring, analytics, and workflow integration platform designed for developers. Monitor APIs in real-time, generate documentation automatically, detect security vulnerabilities, and analyze API workflows.
- Automatic detection and tracking of API calls across all websites
- Performance metrics and response time analysis
- Success rate monitoring and error tracking
- Tab-based organization of API data
- Performance insights and optimization recommendations
- Usage pattern analysis with AI-powered suggestions
- Historical data visualization and trending
- Export capabilities (JSON, CSV formats)
- Automated detection of SQL injection vulnerabilities
- XSS (Cross-Site Scripting) vulnerability scanning
- Authentication and authorization flaw detection
- CORS misconfiguration identification
- Real-time security alerts and recommendations
- OpenAPI specification generation from detected endpoints
- Interactive API documentation viewer
- Endpoint discovery and cataloging
- Request/response schema analysis
- Dependency mapping between API endpoints
- Sequence pattern detection and visualization
- Automated testing scenario generation
- Workflow optimization recommendations
- API discovery sharing platform
- Community-driven playbook creation
- User reputation and badge system
- Collaborative API testing and documentation
- Frontend: React with TypeScript, Tailwind CSS, shadcn/ui components
- Backend: Express.js with TypeScript
- Database: PostgreSQL with Drizzle ORM
- Analytics: AI-powered insights and anomaly detection
- Security: Comprehensive vulnerability scanning engine
- Manifest V3 compliant Chrome extension
- Real-time API call interception and analysis
- Seamless integration with web application backend
- Local storage with optional cloud synchronization
- Multi-tab interface with advanced features
- Node.js 18+
- PostgreSQL database
- Chrome browser (for extension)
-
Clone the repository
git clone https://github.com/yourusername/nexapi-detector.git cd nexapi-detector -
Install dependencies
npm install
-
Set up environment variables
cp .env.example .env # Edit .env with your database URL and other configurations -
Set up the database
npm run db:push
-
Start the development server
npm run dev
-
Install Chrome Extension (Optional)
- Open Chrome and navigate to
chrome://extensions/ - Enable "Developer mode"
- Click "Load unpacked" and select the
extension-distfolder
- Open Chrome and navigate to
- Open your browser and navigate to
http://localhost:5000 - Start browsing websites with APIs to begin monitoring
- Use the dashboard to view analytics, security reports, and documentation
- Create and share API discoveries with the community
- Install the extension and pin it to your toolbar
- Navigate to any website with API endpoints
- Click the extension icon to view real-time monitoring
- Access advanced features through integration with the web application
GET /api/analytics/dashboard- Analytics overviewPOST /api/api-calls- Save API call dataGET /api/documentation- Generated documentationPOST /api/security/scan- Security vulnerability scanGET /api/workflows- API workflow analysis
GET /api/community/discoveries- Browse API discoveriesPOST /api/community/playbooks- Create testing playbooksGET /api/community/leaderboard- User rankings
βββ client/ # React frontend application
β βββ src/
β β βββ components/ # Reusable UI components
β β βββ pages/ # Application pages
β β βββ lib/ # Utilities and configurations
βββ server/ # Express backend application
β βββ routes.ts # API route definitions
β βββ storage.ts # Database interface
β βββ services/ # Business logic services
βββ shared/ # Shared types and schemas
βββ extension-dist/ # Chrome extension package
βββ README.md
- Frontend: React, TypeScript, Tailwind CSS, Tanstack Query
- Backend: Express.js, TypeScript, Drizzle ORM
- Database: PostgreSQL
- Extension: Chrome Extension API, Manifest V3
- Analytics: Custom AI analytics engine
- Security: Automated vulnerability detection
- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
- SQL Injection: Pattern-based detection in query parameters
- XSS Vulnerabilities: Script injection analysis
- Authentication Flaws: Weak authentication mechanism detection
- CORS Issues: Cross-origin policy misconfiguration detection
- Data Exposure: Sensitive information leak detection
- Local-first data storage with optional cloud sync
- Encrypted data transmission
- No tracking or analytics collection
- User data remains private and secure
- Automatic API call detection across all websites
- Performance metrics and success rate tracking
- Tab-based data organization
- Local storage with export capabilities
- Seamless connection to web application backend
- Enhanced analytics when connected
- Security scanning integration
- Documentation generation access
- Download the extension files from the
extension-distfolder - Open Chrome and go to
chrome://extensions/ - Toggle "Developer mode" ON
- Click "Load unpacked" and select the extension folder
- Pin the extension to your toolbar for easy access
This project is licensed under the MIT License - see the LICENSE file for details.
For support, feature requests, or bug reports:
- Open an issue on GitHub
- Check the documentation in the
/docsfolder - Review the installation guide in
extension-dist/INSTALLATION.md
- Enhanced AI-powered API recommendations
- Integration with popular API testing tools
- Advanced workflow automation features
- Enterprise-grade security scanning
- Mobile application companion
- API marketplace integration
Built with β€οΈ for the developer community. Monitor APIs, stay secure, and build better applications.# nexapi-detector