Escape-Technologies / awesome-graphql-security
A curated list of awesome GraphQL Security frameworks, libraries, software and resources
☆333Updated last year
Alternatives and similar repositories for awesome-graphql-security
Users that are interested in awesome-graphql-security are comparing it to the libraries listed below
Sorting:
- Security Auditor Utility for GraphQL APIs☆456Updated 3 months ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations☆307Updated 2 weeks ago
- Blazing fast GraphQL discovery & fingerprinting toolbox.☆111Updated last year
- 🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️☆215Updated last year
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆633Updated last month
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆362Updated last year
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆384Updated 2 years ago
- CrackQL is a GraphQL password brute-force and fuzzing utility.☆330Updated 9 months ago
- GraphQL automated security testing toolkit☆316Updated last year
- 🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!☆56Updated 6 months ago
- Websec interview questions by tib3rius answered☆308Updated last year
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆290Updated last year
- Obtain GraphQL API schema even if the introspection is disabled☆1,182Updated 7 months ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆191Updated 9 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆169Updated 3 months ago
- A Broken Application - Very Vulnerable!☆159Updated last week
- Awesome information for WebSockets security research☆269Updated 3 years ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated last month
- Research on GraphQL from an AppSec point of view.☆414Updated last year
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆232Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 2 months ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆140Updated 3 weeks ago
- Awesome secure by default libraries to help you eliminate bug classes!☆690Updated 3 weeks ago
- Vulnerability Scan with Nuclei☆254Updated 5 months ago
- Attack surface detector that identifies endpoints by static analysis☆700Updated this week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆117Updated last month
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆146Updated 2 weeks ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆84Updated 2 months ago
- ☆487Updated last year
- API Security Project aims to present unique attack & defense methods in API Security field☆284Updated 3 years ago