Alternatives and similar repositories for GraphQLer

Users that are interested in GraphQLer are comparing it to the libraries listed below

• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆162Updated 7 months ago
• thisis0xczar / FrogPost
  FrogPost: postMessage Security Testing Tool
  ☆80Updated last month
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆69Updated 2 months ago
• synacktiv / DepFuzzer
  ☆64Updated last month
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆119Updated last year
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆126Updated 2 months ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated 2 months ago
• doyensec / CSPTPlayground
  CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).
  ☆122Updated 2 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated 11 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 4 months ago
• avlidienbrunn / archivealchemist
  Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.
  ☆119Updated 3 weeks ago
• dreadnode / burpference
  A research project to add some brrrrrr to Burp
  ☆178Updated 4 months ago
• dwisiswant0 / ipfuscator
  A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…
  ☆88Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆41Updated last year
• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆91Updated 4 months ago
• yacwagh / FAAST
  Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
  ☆49Updated last month
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆192Updated 10 months ago
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 11 months ago
• nccgroup / ccs
  ☆111Updated 2 years ago
• PortSwigger / splitting-the-email-atom
  ☆81Updated 8 months ago
• Hakumarachi / Loose-Compare-Tables
  A complete table of results of types comparison in multiple languages
  ☆32Updated 2 years ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆39Updated 6 months ago
• ngalongc / AuthzAI
  ☆177Updated 8 months ago
• chebuya / sastsweep
  tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …
  ☆229Updated 4 months ago
• nccgroup / cq
  ☆115Updated 2 years ago
• xscorp / jsmug
  A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
  ☆113Updated last year
• psiinon / open-source-llm-scanners
  ☆79Updated last month
• francisconeves97 / jxscout
  jxscout superpowers JavaScript analysis for security researchers
  ☆163Updated 3 weeks ago
• redrays-io / WS_RaceCondition_PoC
  Simple PoC for demonstrating Race Conditions on Websockets
  ☆55Updated last year
• sarperavci / ctf-writeups-search
  Search engine for CTF writeups with instant results.
  ☆144Updated 3 months ago