omar2535 / GraphQLer
πA cutting edge context aware GraphQL API fuzzing tool!
β139Updated last week
Alternatives and similar repositories for GraphQLer:
Users that are interested in GraphQLer are comparing it to the libraries listed below
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β116Updated 2 weeks ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aβ¦β157Updated 5 months ago
- β62Updated 4 months ago
- boostsecurityio/lotpβ123Updated last week
- jxscout superpowers JavaScript analysis for security researchersβ76Updated last week
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ103Updated 2 months ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β116Updated last year
- Chrome extension for automating CSPT discoveryβ77Updated 3 weeks ago
- A research project to add some brrrrrr to Burpβ154Updated 2 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokensβ156Updated 4 months ago
- FrogPost: postMessage Security Testing Toolβ50Updated this week
- A web CTF for training developers in bug hunting and secure coding!β98Updated 3 months ago
- Manager of third-party sources of Semgrep rules πβ81Updated 8 months ago
- β189Updated 5 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such β¦β225Updated 2 months ago
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β133Updated 2 weeks ago
- A collection of Turbo Intruder scripts.β58Updated 2 months ago
- β οΈ Code for the Defcon Workshopβ23Updated 8 months ago
- β169Updated 6 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β40Updated last year
- β151Updated last year
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representatiβ¦β86Updated last year
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β39Updated 4 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.β260Updated last month
- β74Updated 6 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.β22Updated last month
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSONβ114Updated last year
- Simple PoC for demonstrating Race Conditions on Websocketsβ56Updated last year
- β41Updated last month
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.β136Updated 9 months ago