FWDSEC / burp-auto-gqlLinks
A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
☆38Updated last year
Alternatives and similar repositories for burp-auto-gql
Users that are interested in burp-auto-gql are comparing it to the libraries listed below
Sorting:
- ☆63Updated 2 years ago
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆100Updated last year
- Extract JavaScript files from burp suite project with ease.☆90Updated 3 years ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆52Updated 4 months ago
- A tool for monitoring bug bounty programs across multiple platforms to track scope changes.☆25Updated 2 weeks ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆139Updated 10 months ago
- BChecks collection for Burp Suite Professional☆100Updated last year
- ☆32Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆70Updated last month
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- An MS Sharepoint and Frontpage Auditing Tool☆50Updated 7 months ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations☆61Updated this week
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- ☆95Updated 3 years ago
- Identify virtual hosts by similarity comparison☆126Updated 11 months ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated last month
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- Web cache poisoning vulnerability scanner.☆71Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆120Updated 2 years ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆145Updated 7 months ago
- Finds graphql queries in javascript files☆62Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆143Updated last year
- ☆89Updated 3 years ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆61Updated 5 months ago
- Prototype Pollution Scanner☆122Updated 4 years ago
- JSSCM detects expired domains for Stored XSS exploitation during browsing.☆49Updated 3 months ago
- Detects request smuggling via HTTP/2 downgrades.☆92Updated 2 years ago
- IIS shortname scanner + bruteforce☆52Updated last year