omar2535 / GraphQLerLinks
πA cutting edge context aware GraphQL API fuzzing tool!
β154Updated 2 months ago
Alternatives and similar repositories for GraphQLer
Users that are interested in GraphQLer are comparing it to the libraries listed below
Sorting:
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aβ¦β163Updated 2 weeks ago
- Nuclei plugins to audit Chrome extensionsβ65Updated last year
- πΈοΈ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. πΈοΈβ222Updated 2 years ago
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representatiβ¦β93Updated 2 years ago
- FrogPost: postMessage Security Testing Toolβ98Updated 2 weeks ago
- Manager of third-party sources of Semgrep rules πβ90Updated last year
- Burp Suite extension for testing Passkey systems.β75Updated 7 months ago
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β140Updated 2 weeks ago
- boostsecurityio/lotpβ137Updated 3 weeks ago
- A research project to add some brrrrrr to Burpβ194Updated 9 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).β145Updated 7 months ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β121Updated 2 years ago
- β90Updated last month
- Additional active scan checks for BURPβ28Updated last year
- Identify hardcoded secrets in static structured text (version 2)β95Updated 9 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such β¦β234Updated 9 months ago
- A web CTF for training developers in bug hunting and secure coding!β101Updated 10 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokensβ163Updated 11 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β42Updated last year
- β114Updated 2 years ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesβ227Updated 5 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty in WebSocketβ85Updated last month
- Seamless AI Integration into Caidoβ33Updated last month
- Encode and Fuzz Custom Protobuf Messages in Burp Suiteβ33Updated 8 months ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agentsβ64Updated 6 months ago
- β οΈ Code for the Defcon Workshopβ23Updated last year
- ngrok Collaborator Link β yet another Burp Collaborator alternative for free with ngrok.β114Updated last year
- Simple PoC for demonstrating Race Conditions on Websocketsβ55Updated 2 years ago
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β41Updated 11 months ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a pβ¦β30Updated 10 months ago