Alternatives and similar repositories for graphql-security-labs:

Users that are interested in graphql-security-labs are comparing it to the libraries listed below

• rammarj / csrf-poc-creator
  A Burp Suite extension for CSRF proof of concepts.
  ☆49Updated last year
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆162Updated 10 months ago
• dwisiswant0 / unew
  A tool for append URLs, skipping duplicates/paths & combine parameters.
  ☆120Updated 2 years ago
• 1ndianl33t / All-in-one_BugBounty_PDF_bundles
  ☆124Updated 4 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆96Updated 2 years ago
• war-and-code / akamai-arl-hack
  Script to test open Akamai ARL vulnerability.
  ☆70Updated 3 years ago
• gwen001 / bugbountytips
  Webapp to search tips on Twitter through #bugbountytips
  ☆70Updated 2 years ago
• shifa123 / shodandorks
  ☆52Updated 4 years ago
• sw33tLie / bcscope
  Get the scope of your bugcrowd programs
  ☆66Updated 4 years ago
• yaworsk / bugbounty
  All Things Bug Bounty
  ☆113Updated 2 years ago
• bp0lr / dmut
  A tool to perform permutations, mutations and alteration of subdomains in golang.
  ☆157Updated last year
• jandersoncampelo / InfosecBookmarks
  ☆52Updated last year
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆176Updated 2 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆90Updated this week
• zPrototype / bugbounty_stuff
  ☆99Updated last year
• jdonsec / AllThingsXXE
  ☆25Updated 4 years ago
• Virdoexhunter / HowToHunt
  Some Tutorials and Things to Do while Hunting That Vulnerability.
  ☆72Updated 4 years ago
• dwisiswant0 / slackcat
  A simple way of sending messages from the CLI output to your Slack with webhook.
  ☆116Updated last year
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆124Updated last year
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 3 years ago
• hakluke / hakfindinternaldomains
  Feed it a list of subdomains, it will resolve them and tell you which ones are internal
  ☆91Updated 3 years ago
• codingo / dooked
  DNS and Target HTTP History Local Storage and Search
  ☆64Updated 4 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 4 years ago
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆61Updated 4 years ago
• zeroc00I / ReconNotes
  Just some public notes that can be useful and i want let the world knows.
  ☆86Updated 4 years ago
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated 2 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆172Updated 3 years ago
• yogisec / VulnerableSAMLApp
  Vulnerable SAML infrastructure training applicaiton
  ☆50Updated 2 years ago