david3107 / graphql-security-labs

Related projects ⓘ

Alternatives and complementary repositories for graphql-security-labs

• zPrototype / bugbounty_stuff
  ☆100Updated last year
• 1ndianl33t / All-in-one_BugBounty_PDF_bundles
  ☆122Updated 4 years ago
• yaworsk / bugbounty
  All Things Bug Bounty
  ☆111Updated 2 years ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆118Updated 2 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆158Updated 7 months ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• codingo / bbr
  An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
  ☆205Updated 4 years ago
• Dhamuharker / Xss-
  Awesome XSS Payloads
  ☆84Updated 8 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆197Updated 2 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆173Updated 2 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• jandersoncampelo / InfosecBookmarks
  ☆54Updated 9 months ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆89Updated 8 months ago
• dwisiswant0 / slackcat
  A simple way of sending messages from the CLI output to your Slack with webhook.
  ☆114Updated 11 months ago
• shifa123 / shodandorks
  ☆52Updated 4 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated 9 months ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆94Updated 2 years ago
• maverickNerd / BugForaging
  This repo includes my analysis of some public reports.
  ☆57Updated 4 years ago
• s0j0hn / AWAE-OSWE-Prep
  ☆121Updated 3 years ago
• devanshbatham / awesome-bughunting-oneliners
  A list of Awesome Bughunting oneliners , collected from the various sources
  ☆65Updated last year
• ahmad0x1 / ARWAD
  Advanced Reconnaissance and Web Application Discovery
  ☆76Updated 2 years ago
• michael1026 / trashcompactor
  ☆65Updated last year
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆63Updated 2 years ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆217Updated 2 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆156Updated 11 months ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆124Updated 9 months ago