ivision-research / vulnerable-graphql-api
A very vulnerable implementation of a GraphQL API.
☆59Updated 3 years ago
Alternatives and similar repositories for vulnerable-graphql-api:
Users that are interested in vulnerable-graphql-api are comparing it to the libraries listed below
- part of my wordlist to bruteforce DNS to find subdoamains.☆62Updated 3 years ago
- ☆59Updated 9 months ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 4 years ago
- AWS Security Checks☆37Updated 7 years ago
- Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops☆42Updated last year
- ☆48Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- ☆22Updated 3 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆58Updated 2 years ago
- ☆51Updated 2 months ago
- Vulnerable SAML infrastructure training applicaiton☆51Updated 2 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆75Updated 2 years ago
- Contains all my research and content produced regarding the log4shell vulnerability☆31Updated 3 years ago
- Performing automated scan using Burp Suite Pro & Vmware Burp Rest API☆49Updated 2 years ago
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆90Updated last month
- This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity☆23Updated 4 years ago
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆14Updated 4 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆27Updated 3 years ago
- Get all the CNs from a list of domains☆46Updated 3 years ago
- Tool for making it easy to collect dns results from the CLI☆40Updated 7 months ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- A burpsuite extension that helps security researchers find public security reports published on h1 based on the selected host☆42Updated 4 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- Send notifications on different channels such as Slack, Telegram, Discord etc.☆39Updated last year
- Python script to launch burp scans automatically☆32Updated 3 years ago
- ☆15Updated 3 years ago
- ☆17Updated 3 years ago
- Intentionally Vulnerable Nodejs Application & APIs☆22Updated 2 years ago