david3107 / graphql-security-labs

Related projects ⓘ

Alternatives and complementary repositories for graphql-security-labs

• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆158Updated 7 months ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆173Updated 2 years ago
• maverickNerd / BugForaging
  This repo includes my analysis of some public reports.
  ☆57Updated 4 years ago
• zPrototype / bugbounty_stuff
  ☆100Updated last year
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆65Updated last year
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆117Updated 2 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated 8 months ago
• 1ndianl33t / All-in-one_BugBounty_PDF_bundles
  ☆122Updated 4 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• yaworsk / bugbounty
  All Things Bug Bounty
  ☆110Updated 2 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆94Updated 2 years ago
• tomnomnom / dnsgrep
  Quickly Search Large DNS Datasets
  ☆59Updated 5 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆88Updated 7 months ago
• ghsec / ghsec-jaeles-signatures
  Signatures for jaeles scanner by @j3ssie
  ☆116Updated 6 months ago
• michael1026 / trashcompactor
  ☆65Updated last year
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆106Updated last year
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• jandersoncampelo / InfosecBookmarks
  ☆53Updated 9 months ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆156Updated 11 months ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆63Updated 2 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆48Updated last year
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆124Updated 9 months ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆197Updated 2 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆184Updated 3 months ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆83Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago