Alternatives and similar repositories for graphql-threat-matrix

Users that are interested in graphql-threat-matrix are comparing it to the libraries listed below

• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆647Updated 2 weeks ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆477Updated 4 months ago
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆365Updated last year
• nicholasaleks / CrackQL
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆335Updated 10 months ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆642Updated last year
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆193Updated 10 months ago
• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆386Updated 2 years ago
• gsmith257-cyber / GraphCrawler
  GraphQL automated security testing toolkit
  ☆320Updated last year
• doyensec / GQLSpection
  GQLSpection - parses GraphQL introspection schema and generates possible queries
  ☆89Updated 3 months ago
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆661Updated 2 months ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆370Updated 2 years ago
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆313Updated 7 months ago
• ngalongc / AuthzAI
  ☆177Updated 8 months ago
• codingo / dorky
  A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
  ☆239Updated last year
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆261Updated 3 months ago
• nikitastupin / clairvoyance
  Obtain GraphQL API schema even if the introspection is disabled
  ☆1,221Updated 9 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆141Updated 6 months ago
• g0ldencybersec / CloudRecon
  ☆490Updated last year
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆178Updated 2 years ago
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆335Updated 2 years ago
• trufflesecurity / of-CORS
  ☆152Updated last year
• Escape-Technologies / awesome-graphql-security
  A curated list of awesome GraphQL Security frameworks, libraries, software and resources
  ☆336Updated last year
• MayankPandey01 / Jira-Lens
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆320Updated 5 months ago
• optiv / mobile-nuclei-templates
  ☆412Updated 4 years ago
• elttam / semgrep-rules
  ☆196Updated 7 months ago
• Escape-Technologies / goctopus
  Blazing fast GraphQL discovery & fingerprinting toolbox.
  ☆112Updated last year
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications
  ☆222Updated 4 months ago
• Escape-Technologies / graphinder
  🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
  ☆218Updated 2 years ago
• ngalongc / openapi_security_scanner
  ☆173Updated 4 years ago
• PalindromeLabs / STEWS
  A Security Tool for Enumerating WebSockets
  ☆352Updated 3 years ago