david3107 / graphql-security-labs
GraphQL security workshop labs
☆101Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for graphql-security-labs
- Script to test open Akamai ARL vulnerability.☆70Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆158Updated 7 months ago
- Unofficial documentation for the great tool Param Miner☆173Updated 2 years ago
- This repo includes my analysis of some public reports.☆57Updated 4 years ago
- ☆100Updated last year
- A list of Awesome Bughunting oneliners , collected from the various sources☆65Updated last year
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆117Updated 2 years ago
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆42Updated 8 months ago
- ☆122Updated 4 years ago
- Burp Extension for easily creating Wordlists☆210Updated 3 years ago
- All Things Bug Bounty☆110Updated 2 years ago
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆94Updated 2 years ago
- Quickly Search Large DNS Datasets☆59Updated 5 years ago
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆88Updated 7 months ago
- Signatures for jaeles scanner by @j3ssie☆116Updated 6 months ago
- ☆65Updated last year
- List of fresh DNS resolvers updated daily☆106Updated last year
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- ☆53Updated 9 months ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Updated 11 months ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆63Updated 2 years ago
- Vulnerable SAML infrastructure training applicaiton☆48Updated last year
- ASN reconnaissance script☆124Updated 9 months ago
- Prototype pollution scanner using headless chrome☆197Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆184Updated 3 months ago
- Find subdomains and takeovers.☆83Updated last year
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago