A very vulnerable implementation of a GraphQL API.
β61Nov 12, 2021Updated 4 years ago
Alternatives and similar repositories for vulnerable-graphql-api
Users that are interested in vulnerable-graphql-api are comparing it to the libraries listed below
Sorting:
- A simple Node.js Express REST app with some OWASP vulnerabilities.β22Aug 13, 2024Updated last year
- π Websheep is an app based on a willingly vulnerable ReSTful APIs.β57Mar 25, 2024Updated last year
- Intentionaly very vulnerable API with bonus bad coding practicesβ51Nov 15, 2025Updated 3 months ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)β46Feb 2, 2023Updated 3 years ago
- β84May 1, 2023Updated 2 years ago
- Vulnerable APIβ418Mar 4, 2023Updated 3 years ago
- a vulnerable GraphQL applicationβ20Dec 13, 2019Updated 6 years ago
- Bug Bounty tool to automate the recon process.β12Oct 4, 2023Updated 2 years ago
- Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.β13Aug 4, 2025Updated 7 months ago
- β10Dec 8, 2022Updated 3 years ago
- Web Application Firewall (WAF) Detectorβ35Mar 13, 2023Updated 2 years ago
- Secrets detection based on regular expressions.β22Apr 15, 2025Updated 10 months ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!β133Dec 22, 2022Updated 3 years ago
- Damn Vulnerable ElectronJS App (DVEA)β17Feb 12, 2026Updated 3 weeks ago
- Damn Vulnerable Web Services is a vulnerable application with a web service and an API that can be used to learn about webservices/API reβ¦β503Updated this week
- Files for my Python3 Create Your Own Tool Seriesβ25Jul 21, 2022Updated 3 years ago
- β15Oct 8, 2025Updated 4 months ago
- Vuldroid is a Vulnerable Android Application made with security issues in order to demonstrate how they can occur in codeβ66Sep 18, 2021Updated 4 years ago
- Techniques / Tips and tricks for finding sensitive data exposures in Github for Penetration Testers / Bug Bounty Huntersβ17Aug 1, 2020Updated 5 years ago
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testingβ1,174Nov 25, 2024Updated last year
- parse ffuf & map endpoints to wordlistsβ21Feb 25, 2021Updated 5 years ago
- Python script to launch burp scans automaticallyβ32Jul 18, 2021Updated 4 years ago
- DLL hijacking vulnerability scanner and PE infector toolβ20Sep 8, 2017Updated 8 years ago
- Test the speed and reliability of a list of DNS serversβ22Dec 9, 2020Updated 5 years ago
- vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.β328Mar 27, 2024Updated last year
- WebSocket Connection Smugglerβ47Sep 30, 2022Updated 3 years ago
- β33Jun 27, 2022Updated 3 years ago
- finds hidden parametersβ23Aug 12, 2023Updated 2 years ago
- GraphQL security workshop labsβ117Jan 31, 2026Updated last month
- The Ultimate Recon Frameworkβ11Mar 29, 2024Updated last year
- This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sitesβ26May 14, 2023Updated 2 years ago
- An HTTP request smuggling scanner designed to work at scaleβ25Oct 2, 2022Updated 3 years ago
- Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practisβ¦β1,676May 24, 2025Updated 9 months ago
- GraphQL threat framework used by security professionals to research security gaps in GraphQL implementationsβ350Jul 1, 2025Updated 8 months ago
- The Proxy Auto Configuration (PAC) file dynamic generator which allows you to specify the proxying rules and the PAC-file will be generatβ¦β10Dec 5, 2019Updated 6 years ago
- Simple Golang JWT Bruteforcer 2β10May 25, 2021Updated 4 years ago
- NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)β13Jun 6, 2023Updated 2 years ago
- Filter URLs that match your scope file for bugbounty.β11May 23, 2023Updated 2 years ago
- Smart and efficient tool to automate open redirect detection at scale.β10Mar 21, 2022Updated 3 years ago