Alternatives and similar repositories for poc-graphql

Users that are interested in poc-graphql are comparing it to the libraries listed below

• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆327Updated 7 months ago
• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆386Updated 2 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 3 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆198Updated 4 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• NotSoSecure / cloud-service-enum
  ☆250Updated 11 months ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆303Updated 4 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆259Updated 3 years ago
• jobertabma / transformations
  ☆173Updated 2 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆455Updated 6 years ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆220Updated 5 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆122Updated 3 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 6 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆353Updated 4 years ago
• david3107 / graphql-security-labs
  GraphQL security workshop labs
  ☆111Updated last month
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆411Updated 2 months ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆135Updated 7 years ago
• ajdumanhug / awesome-bug-bounty-tips
  A curated list of amazingly bug bounty tips from security researchers around the world.
  ☆105Updated 6 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆203Updated last year
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆539Updated 2 years ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆316Updated last year
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆519Updated 2 years ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆253Updated 2 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆172Updated 6 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆176Updated 2 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆276Updated 4 years ago