FWDSEC / burp-auto-gqlView external linksLinks
A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
☆41Oct 20, 2025Updated 3 months ago
Alternatives and similar repositories for burp-auto-gql
Users that are interested in burp-auto-gql are comparing it to the libraries listed below
Sorting:
- NSE Script for GraphQL Introspection Check☆24Jan 9, 2022Updated 4 years ago
- Magento Security Scanner☆13Jan 10, 2022Updated 4 years ago
- ☆16Oct 24, 2018Updated 7 years ago
- ☆17Apr 9, 2024Updated last year
- gSAST - Grep Static Analysis Security Tool☆13Mar 30, 2024Updated last year
- Python script to decrypt files encrypted using Cordova in Android app☆15Aug 19, 2018Updated 7 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- Lightweight BApp that seamlessly integrates powerful LLM-scanning capabilities into Burp's built-in Scanner with improved accuracy. Suppo…☆33Aug 4, 2025Updated 6 months ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆43Apr 23, 2024Updated last year
- A powerful static analysis tool that uses AI to scan Android APK files for security vulnerabilities and potential issues. The scanner dec…☆27Apr 6, 2025Updated 10 months ago
- CORS checking☆34Jul 16, 2018Updated 7 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆41Jul 19, 2018Updated 7 years ago
- Magicspoofing it's a python script that checks & test SPF/DMARC DNS records an tries to spoof a domain with a open relay mail system.☆53Mar 11, 2025Updated 11 months ago
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …☆50Mar 17, 2023Updated 2 years ago
- Custom scan profiles for use with Burp Suite Pro☆151Mar 21, 2024Updated last year
- 通过爱企查和FOFA接口获取注册资本大于5000w公司的公网通用系统,方便获得CNVD证书 在搜索公网资产数量的基础上增加使用fid参数查询,结果更精准☆27Jul 13, 2024Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆158Jul 2, 2024Updated last year
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Mar 26, 2022Updated 3 years ago
- ☆29Feb 4, 2026Updated last week
- WEB API fuzzing☆23Apr 30, 2025Updated 9 months ago
- Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.☆35Sep 30, 2025Updated 4 months ago
- Ollama AI Analyzer runs directly on your local computer, using Ollama's AI models to analyze your HTTP requests and responses. This means…☆32Mar 1, 2025Updated 11 months ago
- Universal root exploit for the linux kernel☆38Apr 30, 2024Updated last year
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆157Updated this week
- The OWApp Benchmark: an OWASP-compliant Vulnerable Android App Dataset☆44Apr 15, 2025Updated 10 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆86Mar 12, 2025Updated 11 months ago
- Apache Thrift Decoder☆35Dec 7, 2017Updated 8 years ago
- Resources from Jamal & Giuliana's presentation on reserving bytecode into bounties for Jira and Confluence Plugins [BSides Canberra and K…☆21Nov 7, 2025Updated 3 months ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- A small utility to generate a word security report by using a knowledge base(XLSX).☆12Nov 25, 2023Updated 2 years ago
- ☆58Sep 8, 2025Updated 5 months ago
- ☆32May 30, 2019Updated 6 years ago
- An extension to use Semgrep inside Burp Suite.☆89May 23, 2025Updated 8 months ago
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…☆92Aug 25, 2023Updated 2 years ago
- 🏴☠️ Find dead-links (broken links)☆167Updated this week
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆106Dec 11, 2023Updated 2 years ago
- 为初学者开发的爆破靶场。☆29Nov 28, 2025Updated 2 months ago
- Shodan Port Scanner☆43Sep 30, 2020Updated 5 years ago
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆255Feb 10, 2025Updated last year