omar2535 / GraphQLer
πA cutting edge context aware GraphQL API fuzzing tool!
β137Updated last week
Alternatives and similar repositories for GraphQLer:
Users that are interested in GraphQLer are comparing it to the libraries listed below
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aβ¦β156Updated 4 months ago
- A research project to add some brrrrrr to Burpβ147Updated last month
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β108Updated 2 months ago
- boostsecurityio/lotpβ119Updated 2 weeks ago
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β132Updated this week
- β60Updated 3 months ago
- Manager of third-party sources of Semgrep rules πβ81Updated 8 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ102Updated 2 months ago
- A collection of Turbo Intruder scripts.β55Updated last month
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β40Updated last year
- β74Updated 5 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suiteβ30Updated 3 weeks ago
- Burp Suite extension for testing Passkey systems.β65Updated last month
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a datβ¦β65Updated last month
- A web CTF for training developers in bug hunting and secure coding!β97Updated 2 months ago
- β οΈ Code for the Defcon Workshopβ23Updated 7 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokensβ155Updated 4 months ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β114Updated last year
- A recon tool that uses ML to predict subdomains. Then returns those that resolve.β54Updated 2 weeks ago
- β110Updated last year
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to β¦β124Updated 11 months ago
- β184Updated 4 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalationβ103Updated last year
- Chrome extension for automating CSPT discoveryβ67Updated this week
- Simple PoC for demonstrating Race Conditions on Websocketsβ56Updated last year
- Octoscan is a static vulnerability scanner for GitHub action workflows.β200Updated 2 months ago
- Blazing fast GraphQL discovery & fingerprinting toolbox.β108Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSONβ114Updated last year
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β39Updated 3 months ago
- β83Updated 9 months ago