Escape-Technologies / ClairvoyanceNext
Obtain GraphQL API Schema even if the introspection is not enabled
β11Updated last year
Alternatives and similar repositories for ClairvoyanceNext:
Users that are interested in ClairvoyanceNext are comparing it to the libraries listed below
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.β58Updated 2 years ago
- Ffuf output browserβ39Updated 2 years ago
- π A curated list of awesome Caido related projectsβ35Updated last month
- yataf extracts secrets and paths from files or urls - its best used against javascript filesβ52Updated 7 months ago
- Additional active scan checks for BURPβ27Updated 6 months ago
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.β57Updated 3 years ago
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.β17Updated 3 months ago
- Automatically look for paramater reflections in the HTTP responseβ16Updated 11 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration testβ¦β32Updated last year
- A tool for sorting blocks of linesβ38Updated 2 years ago
- BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor witβ¦β13Updated 2 years ago
- EvenBetterExtensions allows you to quicky install and keep updated Caido extensions.β23Updated 7 months ago
- A wrapper around jq, to help you parse jq output!β30Updated 4 years ago
- Let's check if your target is vulnerable for client side prototype pollution.β65Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!β20Updated 8 months ago
- Blazing fast GraphQL discovery & fingerprinting toolbox.β109Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a pβ¦β30Updated 3 months ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.β23Updated 11 months ago
- Unicode characters that will translate a single character to multiple characters in domain names or TLD'sβ41Updated 5 months ago
- Validate proxies for specific domainβ36Updated 3 years ago
- β10Updated 6 years ago
- Javascript file change monitoringβ16Updated last month
- A shortlist of core ServiceNow tables.β14Updated last year
- Backend for Nuclear Pondβ21Updated last year
- A command-line application to generate random user agent strings.β17Updated 5 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.β22Updated last month
- Simple PoC for demonstrating Race Conditions on Websocketsβ56Updated last year
- β57Updated last year
- A collection of one off hacks and simple scriptsβ28Updated 2 years ago
- Python script implementing the favicon hash trick to find subdomains.β31Updated 2 years ago