Escape-Technologies / ClairvoyanceNext
Obtain GraphQL API Schema even if the introspection is not enabled
☆10Updated last year
Related projects: ⓘ
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.☆54Updated last year
- BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor wit…☆13Updated last year
- 🔗 A curated list of awesome Caido related projects☆31Updated 2 weeks ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- EvenBetterExtensions allows you to quicky install and keep updated Caido extensions.☆22Updated last month
- Blazing fast GraphQL discovery & fingerprinting toolbox.☆97Updated 10 months ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Updated last week
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.☆57Updated 2 years ago
- Piper Burp Suite Extender plugin☆13Updated 2 years ago
- ☆22Updated 2 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆29Updated 5 months ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆30Updated last year
- Ffuf output browser☆35Updated last year
- A tool for sorting blocks of lines☆35Updated last year
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- Find subdomains on GitLab.☆60Updated 4 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆19Updated last month
- Let's check if your target is vulnerable for client side prototype pollution.☆61Updated 8 months ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 3 years ago
- A small library to alter AWS API requests; Used for fuzzing research☆21Updated 10 months ago
- Automatically look for paramater reflections in the HTTP response☆15Updated 4 months ago
- List all public repositories for (valid) GitHub usernames☆67Updated 11 months ago
- ☆14Updated last year
- Combine words from two wordlist files and concatenate them with an optional delimiter☆34Updated 11 months ago
- Reconnaissance tool for GitLab and GitHub organizations☆49Updated 10 months ago
- ☆12Updated this week
- a vulnerable GraphQL application☆18Updated 4 years ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆56Updated last year
- Open a DNS server that knows no records but records every request. Used for DNS exfiltration.☆65Updated 2 years ago
- Basic implementation of certstream to print new subdomains and domains☆37Updated 3 years ago