Alternatives and similar repositories for graphql-threat-matrix:

Users that are interested in graphql-threat-matrix are comparing it to the libraries listed below

• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆603Updated 2 months ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆425Updated this week
• Escape-Technologies / graphql-wordlist
  The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
  ☆352Updated last year
• nicholasaleks / CrackQL
  CrackQL is a GraphQL password brute-force and fuzzing utility.
  ☆324Updated 6 months ago
• gsmith257-cyber / GraphCrawler
  GraphQL automated security testing toolkit
  ☆311Updated last year
• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆378Updated 2 years ago
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆189Updated 6 months ago
• assetnote / surf
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆622Updated last year
• doyensec / GQLSpection
  GQLSpection - parses GraphQL introspection schema and generates possible queries
  ☆78Updated 8 months ago
• BishopFox / sj
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆585Updated 3 months ago
• PalindromeLabs / awesome-websocket-security
  Awesome information for WebSockets security research
  ☆260Updated 3 years ago
• ngalongc / AuthzAI
  ☆164Updated 4 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆256Updated 7 months ago
• resyncgg / ripgen
  Rust-based high performance domain permutation generator.
  ☆284Updated last year
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆167Updated 2 weeks ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆363Updated 2 years ago
• MayankPandey01 / Jira-Lens
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆318Updated last month
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆304Updated 3 months ago
• attacksurge / ax
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…
  ☆334Updated last week
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆216Updated 2 years ago
• xnl-h4ck3r / urless
  De-clutter a list of URLs
  ☆321Updated 3 months ago
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆140Updated 2 weeks ago
• Escape-Technologies / goctopus
  Blazing fast GraphQL discovery & fingerprinting toolbox.
  ☆107Updated last year
• Escape-Technologies / graphinder
  🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
  ☆208Updated last year
• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆264Updated 10 months ago
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆240Updated last week
• elttam / semgrep-rules
  ☆180Updated 3 months ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆176Updated 2 years ago
• g0ldencybersec / CloudRecon
  ☆467Updated 9 months ago
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆130Updated 2 years ago