A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
☆41Oct 20, 2025Updated 7 months ago
Alternatives and similar repositories for burp-auto-gql
Users that are interested in burp-auto-gql are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- gSAST - Grep Static Analysis Security Tool☆13Mar 30, 2024Updated 2 years ago
- ☆18Apr 9, 2024Updated 2 years ago
- NSE Script for GraphQL Introspection Check☆25Jan 9, 2022Updated 4 years ago
- Magento Security Scanner☆13Jan 10, 2022Updated 4 years ago
- A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates Java…☆26Mar 23, 2022Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- CORS checking☆34Jul 16, 2018Updated 7 years ago
- ☆16Oct 24, 2018Updated 7 years ago
- Custom scan profiles for use with Burp Suite Pro☆154Mar 21, 2024Updated 2 years ago
- Magicspoofing it's a python script that checks & test SPF/DMARC DNS records an tries to spoof a domain with a open relay mail system.☆54Mar 11, 2025Updated last year
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆43Apr 23, 2024Updated 2 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆41Jul 19, 2018Updated 7 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- AppArmor and Seccomp profiles for K8S images☆25Dec 9, 2025Updated 5 months ago
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …☆49Mar 17, 2023Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆62Sep 14, 2022Updated 3 years ago
- Python script to decrypt files encrypted using Cordova in Android app☆15Aug 19, 2018Updated 7 years ago
- A powerful static analysis tool that uses AI to scan Android APK files for security vulnerabilities and potential issues. The scanner dec…☆31Apr 6, 2025Updated last year
- SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.☆31Jan 8, 2018Updated 8 years ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆39Jan 2, 2025Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆167Jul 2, 2024Updated last year
- Ultimate List Of Bug Bounty Tools☆10Feb 25, 2023Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆90May 23, 2025Updated last year
- Lightweight BApp that seamlessly integrates powerful LLM-scanning capabilities into Burp's built-in Scanner with improved accuracy. Suppo…☆40Aug 4, 2025Updated 9 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Mar 26, 2022Updated 4 years ago
- Extract JavaScript files from burp suite project with ease.☆96Feb 19, 2022Updated 4 years ago
- ☆22Jan 11, 2025Updated last year
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆778Mar 12, 2026Updated 2 months ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆163May 23, 2026Updated last week
- ☆11Nov 7, 2016Updated 9 years ago
- Command line interface for Jsmon Security Platform☆32May 18, 2026Updated last week
- Quality of Life Macros for Destiny 2☆13Apr 24, 2024Updated 2 years ago
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Incursore came from nmapAutomator to be your personal raider while you enumerate a target.☆52Jul 12, 2024Updated last year
- gRPC / gRPC-Web Pentest Practicing Lab☆10Aug 29, 2023Updated 2 years ago
- Exploiting XSS with Javascript/JPEG Polyglot (by @medusa_0xf)☆21Apr 8, 2022Updated 4 years ago
- ☆12Dec 30, 2024Updated last year
- 通过爱企查和FOFA接口获取注册资本大于5000w公司的公网通用系统,方便获得CNVD证书 在搜索公网资产数量的基础上增加使用fid参数查询,结果更精准☆28Jul 13, 2024Updated last year
- ☆16Jan 9, 2025Updated last year
- ☆15Oct 14, 2022Updated 3 years ago