Alternatives and similar repositories for Damn-Vulnerable-GraphQL-Application:

Users that are interested in Damn-Vulnerable-GraphQL-Application are comparing it to the libraries listed below

• swisskyrepo / GraphQLmap
  GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
  ☆1,437Updated 11 months ago
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,586Updated 7 months ago
• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆600Updated 2 months ago
• lutfumertceylan / top25-parameter
  For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
  ☆1,728Updated 8 months ago
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,111Updated 4 months ago
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,741Updated 10 months ago
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆953Updated 3 years ago
• s0md3v / Corsy
  CORS Misconfiguration Scanner
  ☆1,395Updated 2 years ago
• sh377c0d3 / Payloads
  Payload Arsenal for Pentration Tester and Bug Bounty Hunters
  ☆900Updated last year
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆783Updated 2 years ago
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,350Updated last year
• NagliNagli / Shockwave-OSS
  ☆748Updated 7 months ago
• zeroc00I / AllVideoPocsFromHackerOne
  This script grab public report from hacker one and make some folders with poc videos
  ☆880Updated 2 years ago
• dwisiswant0 / awesome-oneliner-bugbounty
  A collection of awesome one-liner scripts especially for bug bounty tips.
  ☆2,770Updated 6 months ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,891Updated last year
• assetnote / kiterunner
  Contextual Content Discovery Tool
  ☆2,747Updated 9 months ago
• The-XSS-Rat / SecurityTesting
  ☆1,045Updated 3 months ago
• inonshk / 31-days-of-API-Security-Tips
  This challenge is Inon Shkedy's 31 days API Security Tips.
  ☆2,113Updated 2 years ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,258Updated 5 months ago
• BlackFan / client-side-prototype-pollution
  Prototype Pollution and useful Script Gadgets
  ☆1,443Updated last year
• e11i0t4lders0n / Web-Application-Pentest-Checklist
  ☆524Updated 3 years ago
• PentestPad / subzy
  Subdomain takeover vulnerability checker
  ☆1,143Updated 5 months ago
• jdonsec / AllThingsSSRF
  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
  ☆1,240Updated 4 years ago
• dwisiswant0 / crlfuzz
  A fast tool to scan CRLF vulnerability written in Go
  ☆1,380Updated this week
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,175Updated last week
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆921Updated last year
• devanshbatham / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆2,614Updated 7 months ago
• tomnomnom / hacks
  A collection of hacks and one-off scripts
  ☆2,186Updated last year
• yeswehack / PwnFox
  PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
  ☆1,110Updated 6 months ago
• projectdiscovery / public-bugbounty-programs
  Community curated list of public bug bounty and responsible disclosure programs.
  ☆1,090Updated this week