Escape-Technologies / graphinder
πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈ
β211Updated last year
Alternatives and similar repositories for graphinder:
Users that are interested in graphinder are comparing it to the libraries listed below
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.β192Updated 8 months ago
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.β357Updated last year
- β151Updated last year
- GQLSpection - parses GraphQL introspection schema and generates possible queriesβ83Updated last month
- De-clutter a list of URLsβ334Updated 4 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.β168Updated 2 months ago
- β167Updated 6 months ago
- Blazing fast GraphQL discovery & fingerprinting toolbox.β108Updated last year
- Filter and enrich a list of subdomains by levelβ201Updated last year
- A streamlined tool for discovering private TLDs for security research.β188Updated this week
- GraphQL automated security testing toolkitβ314Updated last year
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty reconβ236Updated last year
- Prototype pollution scanner using headless chromeβ217Updated 2 years ago
- Security Auditor Utility for GraphQL APIsβ446Updated 2 months ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better πβ142Updated 3 weeks ago
- Distribute ordinary bash commands over many systemsβ162Updated 2 years ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflowsβ287Updated last year
- Chrome extension for automating CSPT discoveryβ77Updated 3 weeks ago
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technologyβ¦β617Updated this week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β115Updated 2 weeks ago
- Rust-based high performance domain permutation generator.β286Updated last year
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.β237Updated 2 months ago
- β199Updated 10 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aβ¦β156Updated 5 months ago
- Discover new target domains using Content Security Policyβ416Updated this week
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.β230Updated last year
- An Automated Subdomain Enumeration Toolβ260Updated 6 months ago
- β94Updated 6 months ago
- Identify virtual hosts by similarity comparisonβ119Updated 8 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β631Updated last year