Skip to content
#

bfla

Here are 3 public repositories matching this topic...

Language: All
Filter by language

Matrix-driven authorization testing for HTTP APIs and MCP tool-calls. Turns an access-control matrix into positive & negative tests that catch BOLA, BFLA, BOPLA, privilege escalation and authorization drift — with CWE/OWASP-tagged SARIF for CI/CD.

  • Updated Jul 10, 2026
  • Python

Improve this page

Add a description, image, and links to the bfla topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the bfla topic, visit your repo's landing page and select "manage topics."

Learn more