Alternatives and similar repositories for graphql-cop

Users that are interested in graphql-cop are comparing it to the libraries listed below

• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆807Updated 8 months ago
• nicholasaleks / graphql-threat-matrix
  GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations
  ☆347Updated 7 months ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆458Updated 2 years ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆749Updated 2 years ago
• gsmith257-cyber / GraphCrawler
  GraphQL automated security testing toolkit
  ☆332Updated last year
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆719Updated last week
• nicholasaleks / CrackQL
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆346Updated last year
• g0ldencybersec / CloudRecon
  ☆521Updated last year
• trufflesecurity / xsshunter
  ☆537Updated 2 months ago
• g0ldencybersec / gungnir
  CT Log Scanner
  ☆513Updated last month
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,380Updated 2 months ago
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆357Updated 4 months ago
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…
  ☆719Updated last month
• g0ldencybersec / sus_params
  ☆210Updated last year
• Escape-Technologies / graphinder
  🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
  ☆227Updated 2 years ago
• ngalongc / AuthzAI
  ☆182Updated last year
• caido-community / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆161Updated last week
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆365Updated 4 years ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆402Updated last month
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆489Updated this week
• w9w / JSA
  Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
  ☆560Updated 11 months ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆500Updated last week
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆205Updated last year
• hakluke / haktrails
  Golang client for querying SecurityTrails API data
  ☆581Updated 3 weeks ago
• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆404Updated 3 years ago
• fyoorer / ShadowClone
  Unleash the power of cloud
  ☆820Updated last year
• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆747Updated 2 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆151Updated 10 months ago
• doyensec / GQLSpection
  GQLSpection - parses GraphQL introspection schema and generates possible queries
  ☆98Updated 11 months ago
• jthack / ffufai
  AI-powered ffuf wrapper
  ☆641Updated 2 months ago