dolevf / graphql-cop
Security Auditor Utility for GraphQL APIs
☆436Updated last month
Alternatives and similar repositories for graphql-cop:
Users that are interested in graphql-cop are comparing it to the libraries listed below
- graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…☆611Updated 4 months ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations☆302Updated last year
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆356Updated last year
- CrackQL is a GraphQL password brute-force and fuzzing utility.☆327Updated 7 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆629Updated last year
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆191Updated 7 months ago
- A curated list of awesome GraphQL Security frameworks, libraries, software and resources☆322Updated last year
- GraphQL automated security testing toolkit☆313Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆607Updated last week
- Blazing fast GraphQL discovery & fingerprinting toolbox.☆108Updated last year
- 🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️☆210Updated last year
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆381Updated 2 years ago
- ☆166Updated 5 months ago
- Obtain GraphQL API schema even if the introspection is disabled☆1,147Updated 6 months ago
- Fast and customizable vulnerability scanner For JIRA written in Python☆317Updated 2 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆404Updated this week
- ☆150Updated last year
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆166Updated last month
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆286Updated 4 months ago
- ☆168Updated last month
- ☆198Updated 10 months ago
- AI-powered ffuf wrapper☆301Updated 4 months ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆79Updated 3 weeks ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆141Updated last week
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆234Updated last year
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated 2 months ago
- A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…☆285Updated 11 months ago
- ☆428Updated 2 months ago
- A Security Tool for Enumerating WebSockets☆343Updated 3 years ago
- ☆475Updated 11 months ago