Escape-Technologies / goctopus
Blazing fast GraphQL discovery & fingerprinting toolbox.
β101Updated 11 months ago
Related projects β
Alternatives and complementary repositories for goctopus
- πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈβ185Updated last year
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.β328Updated last year
- Security Auditor Utility for GraphQL APIsβ382Updated 2 months ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.β184Updated 3 months ago
- GQLSpection - parses GraphQL introspection schema and generates possible queriesβ70Updated 4 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.β165Updated 5 months ago
- β146Updated last year
- Chrome extension for automating CSPT discoveryβ47Updated last month
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementationsβ286Updated 11 months ago
- π° Caido Plugin StarterKitβ30Updated 2 weeks ago
- Obtain GraphQL API Schema even if the introspection is not enabledβ11Updated last year
- GraphQL automated security testing toolkitβ301Updated 8 months ago
- β60Updated last month
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representatiβ¦β85Updated last year
- π οΈ Workflows created by the communityβ59Updated 3 months ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better πβ133Updated this week
- β134Updated 3 weeks ago
- Filter and enrich a list of subdomains by levelβ190Updated last year
- Proviesec Fuzz Scanner - dir/path web scannerβ99Updated 2 months ago
- CrackQL is a GraphQL password brute-force and fuzzing utility.β314Updated 3 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β79Updated last month
- β147Updated 3 months ago
- A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.β57Updated 2 years ago
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technologyβ¦β573Updated last month
- GraphQL security workshop labsβ101Updated 4 months ago
- Create your own recon & vulnerability scanner with Trickest and GitHubβ49Updated last year
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.β54Updated last year
- Distribute ordinary bash commands over many systemsβ160Updated 2 years ago
- List all public repositories for (valid) GitHub usernamesβ68Updated last year
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflowsβ273Updated last year