assetnote / batchqlLinks
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
☆392Updated 2 years ago
Alternatives and similar repositories for batchql
Users that are interested in batchql are comparing it to the libraries listed below
Sorting:
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆663Updated 2 months ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations☆319Updated last month
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆388Updated 3 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆195Updated last year
- ☆170Updated 4 years ago
- Rust-based high performance domain permutation generator.☆293Updated last year
- Security Testing Scripts for JWT☆316Updated 3 years ago
- GraphQL automated security testing toolkit☆324Updated last year
- CrackQL is a GraphQL password brute-force and fuzzing utility.☆339Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆317Updated last month
- Unofficial documentation for the great tool Param Miner☆182Updated 3 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.☆263Updated last year
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆294Updated 2 years ago
- Http request smuggling vulnerability scanner☆226Updated 3 years ago
- Security Auditor Utility for GraphQL APIs☆488Updated 6 months ago
- Prototype pollution scanner using headless chrome☆220Updated 3 years ago
- ☆416Updated 4 years ago
- DOM XSS scanner for Single Page Applications☆415Updated 2 months ago
- Research on GraphQL from an AppSec point of view.☆415Updated 2 years ago
- Client Side Prototype Pollution Scanner☆520Updated 2 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆302Updated 2 years ago
- A simple SSRF-testing sheriff written in Go☆327Updated 10 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆511Updated 3 years ago
- Automated learning of regexes for DNS discovery☆372Updated 2 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆164Updated 2 years ago
- A tool to test security of json web token☆275Updated 4 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.☆320Updated last year
- A Firefox Web Extension to improve the discovery of DOM XSS.☆277Updated 9 months ago
- Secret and/or credential patterns used for gf.☆242Updated 2 years ago
- Tool for catching and logging different types of requests.☆220Updated 4 years ago