Alternatives and similar repositories for poc-graphql

Users that are interested in poc-graphql are comparing it to the libraries listed below

• assetnote / batchql
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆386Updated 2 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆327Updated 7 months ago
• nicholasaleks / graphql-threat-matrix
  GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations
  ☆312Updated last month
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆326Updated 3 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆304Updated 4 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆198Updated 4 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• szski / shapeshifter
  GraphQL security testing tool
  ☆122Updated 3 years ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆315Updated 2 years ago
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆411Updated 3 weeks ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆137Updated 7 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆177Updated 2 years ago
• dolevf / graphw00f
  graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology…
  ☆647Updated 2 weeks ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆260Updated 3 years ago
• doyensec / burpdeveltraining
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆353Updated 4 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• dogangcr / vulnerable-sso
  vulnerable single sign on
  ☆147Updated 10 months ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆206Updated 2 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆534Updated 6 years ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆477Updated 4 months ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 6 years ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆220Updated 5 years ago
• JuxhinDB / OOB-Server
  A Bind9 server for pentesters to use for Out-of-Band vulnerabilities
  ☆191Updated 5 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆518Updated 2 years ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆316Updated last year
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆454Updated 6 years ago
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆537Updated 7 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆287Updated 5 months ago