ivision-research / vulnerable-graphql-api

Related projects ⓘ

Alternatives and complementary repositories for vulnerable-graphql-api

• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆36Updated 6 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆42Updated last year
• shivsahni / NSDetect
  ☆22Updated 2 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆39Updated last year
• GovTech-CSG / Autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆74Updated 2 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆29Updated 2 years ago
• th3hack3rwiz / Lazy-FuzzZ
  Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …
  ☆51Updated 3 years ago
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago
• va1da5 / manual-source-code-review
  Regex patterns for manual application source code review
  ☆25Updated 3 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated 9 months ago
• TROUBLE-1 / Type-juggling
  Lab that will help you to understand how type juggling vulnerability works.
  ☆22Updated 4 years ago
• timkoopmans / eipfish
  Go fish for AWS EIPs
  ☆46Updated 3 years ago
• Rhynorater / reports
  ☆57Updated 4 months ago
• parsiya / eslinter
  Manual JavaScript Linting is a Bug
  ☆49Updated 3 years ago
• In3tinct / Taken
  Takeover AWS ips and have a working POC for Subdomain Takeover.
  ☆89Updated 8 months ago
• pentesterland / pentesterland.github.io
  Source for Pentester Land
  ☆31Updated 2 years ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆57Updated 4 years ago
• redhuntlabs / Project-Resonance
  ☆47Updated 5 months ago
• cqsd / daily-commonspeak2
  commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. …
  ☆38Updated 3 years ago
• TROUBLE-1 / Hacking-Sunday
  ☆0Updated 4 years ago
• codingo / Bugcrowd-Talks
  Slide Decks and Supporting Content of talks given for Bugcrowd
  ☆16Updated 4 years ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆59Updated 3 years ago
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆39Updated 3 months ago
• defparam / h1stats
  a tool that compiles a csv of all h1 program stats
  ☆46Updated last year
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆41Updated 4 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆37Updated 11 months ago
• vianasw / dvwps
  Damn Vulnerable WordPress Site
  ☆50Updated last year
• PortSwigger / openapi-parser
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆42Updated 9 months ago
• emadshanab / Huge_DIR_wordlist
  ☆47Updated 3 years ago