Alternatives and similar repositories for graphql-cop

Users that are interested in graphql-cop are comparing it to the libraries listed below

• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆687Updated 4 months ago
• nicholasaleks / graphql-threat-matrix
  GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations
  ☆323Updated 3 months ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆409Updated 2 years ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆683Updated last year
• nicholasaleks / CrackQL
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆341Updated last year
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆702Updated last month
• gsmith257-cyber / GraphCrawler
  GraphQL automated security testing toolkit
  ☆327Updated last year
• g0ldencybersec / CloudRecon
  ☆503Updated last year
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…
  ☆638Updated last month
• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆394Updated 2 years ago
• g0ldencybersec / gungnir
  CT Log Scanner
  ☆410Updated 6 months ago
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,297Updated 2 months ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆195Updated last year
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆573Updated 2 years ago
• trufflesecurity / xsshunter
  ☆514Updated 2 weeks ago
• Escape-Technologies / graphinder
  🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
  ☆222Updated 2 years ago
• ngalongc / AuthzAI
  ☆183Updated last year
• MayankPandey01 / Jira-Lens
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆344Updated 9 months ago
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆158Updated last week
• incogbyte / shosubgo
  Small tool to Grab subdomains using Shodan api.
  ☆508Updated last month
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆280Updated last month
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆484Updated last week
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆362Updated 3 years ago
• g0ldencybersec / sus_params
  ☆200Updated last year
• jhaddix / awsScrape
  A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.
  ☆235Updated last year
• w9w / JSA
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆549Updated 7 months ago
• jthack / ffufai
  AI-powered ffuf wrapper
  ☆543Updated 11 months ago
• redhuntlabs / BucketLoot
  BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…
  ☆432Updated 9 months ago
• iustin24 / chameleon
  ☆382Updated 2 years ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆382Updated 5 months ago