omar2535 / GraphQLerLinks
πA cutting edge context aware GraphQL API fuzzing tool!
β147Updated this week
Alternatives and similar repositories for GraphQLer
Users that are interested in GraphQLer are comparing it to the libraries listed below
Sorting:
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aβ¦β163Updated this week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β135Updated 4 months ago
- FrogPost: postMessage Security Testing Toolβ95Updated 3 months ago
- β82Updated 3 weeks ago
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β134Updated 4 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such β¦β233Updated 6 months ago
- Burp Suite extension for testing Passkey systems.β73Updated 4 months ago
- πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈβ221Updated 2 years ago
- A research project to add some brrrrrr to Burpβ185Updated 6 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesβ220Updated 2 months ago
- boostsecurityio/lotpβ132Updated 4 months ago
- A collection of Turbo Intruder scripts.β63Updated 6 months ago
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representatiβ¦β91Updated 2 years ago
- Manager of third-party sources of Semgrep rules πβ87Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.β274Updated 5 months ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β119Updated 2 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β42Updated last year
- Nuclei plugins to audit Chrome extensionsβ65Updated last year
- QRFuzz, a fuzzing toolkit to test malicious QR Codes in mobile applicationsβ46Updated last year
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ105Updated 6 months ago
- A web CTF for training developers in bug hunting and secure coding!β99Updated 7 months ago
- ngrok Collaborator Link β yet another Burp Collaborator alternative for free with ngrok.β116Updated last year
- Simple PoC for demonstrating Race Conditions on Websocketsβ55Updated last year
- β96Updated 3 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty in WebSocketβ80Updated last week
- HTML Universal Identifierβ67Updated 8 months ago
- WebSocket REPL for pentestersβ223Updated last year
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agentsβ63Updated 3 months ago
- β οΈ Code for the Defcon Workshopβ23Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.β21Updated 5 months ago