Escape-Technologies / graphql-security-academyLinks
🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!
☆59Updated 10 months ago
Alternatives and similar repositories for graphql-security-academy
Users that are interested in graphql-security-academy are comparing it to the libraries listed below
Sorting:
- Blazing fast GraphQL discovery & fingerprinting toolbox.☆115Updated last year
- A curated list of awesome GraphQL Security frameworks, libraries, software and resources☆338Updated last year
- 🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️☆221Updated 2 years ago
- Security Auditor Utility for GraphQL APIs☆491Updated 6 months ago
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆383Updated last year
- ☆83Updated 7 months ago
- A Broken Application - Very Vulnerable!☆167Updated 2 weeks ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations☆320Updated 2 months ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆147Updated this week
- Sasori is a dynamic web crawler powered by Puppeteer, designed for lightning-fast endpoint discovery.☆145Updated last year
- GraphQL automated security testing toolkit☆324Updated last year
- API Security Vulnerability Scanner designed to help you secure your APIs.☆167Updated last week
- Scans your Github Actions for security issues☆83Updated last week
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆661Updated 2 months ago
- APIsec|SCAN - Free API security testing using Github actions☆101Updated last year
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆39Updated 3 years ago
- CrackQL is a GraphQL password brute-force and fuzzing utility.☆339Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆174Updated 4 months ago
- ☆215Updated last year
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆195Updated last year
- Websec interview questions by tib3rius answered☆311Updated last year
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆300Updated 3 weeks ago
- A web CTF for training developers in bug hunting and secure coding!☆99Updated 7 months ago
- jxscout superpowers JavaScript analysis for security researchers☆246Updated 3 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆135Updated 5 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆224Updated 2 months ago
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆241Updated last year
- Obtain GraphQL API Schema even if the introspection is not enabled☆11Updated 2 years ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆172Updated this week
- ⚔️ A compiled list of companies who have active programs for responsible disclosure☆168Updated last week