Escape-Technologies / graphinder
πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈ
β197Updated last year
Related projects β
Alternatives and complementary repositories for graphinder
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.β186Updated 3 months ago
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.β329Updated last year
- β146Updated last year
- Blazing fast GraphQL discovery & fingerprinting toolbox.β101Updated last year
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technologyβ¦β579Updated last month
- β143Updated last month
- Security Auditor Utility for GraphQL APIsβ384Updated 2 months ago
- Prototype pollution scanner using headless chromeβ197Updated 2 years ago
- GraphQL automated security testing toolkitβ303Updated 9 months ago
- Discover new target domains using Content Security Policyβ383Updated this week
- GQLSpection - parses GraphQL introspection schema and generates possible queriesβ72Updated 5 months ago
- Filter and enrich a list of subdomains by levelβ193Updated last year
- De-clutter a list of URLsβ309Updated this week
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better πβ135Updated 2 weeks ago
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way tβ¦β227Updated 2 years ago
- Distribute ordinary bash commands over many systemsβ161Updated 2 years ago
- Generate tens of thousands of subdomain combinations in a matter of secondsβ254Updated last year
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.β166Updated 6 months ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementationsβ288Updated 11 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β533Updated 11 months ago
- A tool to inspect and attack version 1 GUIDsβ206Updated 2 years ago
- List of fresh DNS resolvers updated dailyβ106Updated last year
- CrackQL is a GraphQL password brute-force and fuzzing utility.β315Updated 3 months ago
- β147Updated 4 months ago
- π οΈ Workflows created by the communityβ61Updated 4 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiomβ178Updated 2 years ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.β225Updated 10 months ago
- A simple tool that helps to find assets/domains based on the Google Analytics ID.β169Updated 6 months ago
- A GraphQL enumeration and extraction toolβ128Updated last year
- Find endpoints on GitHub.β189Updated last year