A vast collection of security tools for bug bounty, pentest and red teaming

#graphql

Graphicator on offsec.tools
Graphicator

Enumerate and extract GraphQL APIs.

#api   #graphql  

GraphQL Threat Matrix on offsec.tools
GraphQL Threat Matrix

Threat framework to research security gaps in GraphQL implementations.

graphql-path-enum on offsec.tools
graphql-path-enum

Lists the different ways of reaching a given type in a GraphQL schema.

clairvoyance on offsec.tools
clairvoyance

Obtain GraphQL API Schema even if the introspection is not enabled.

GraphQL Beautifier on offsec.tools
GraphQL Beautifier

Burp Suite extension to help make Graphql request more readable.

ShapeShifter on offsec.tools
ShapeShifter

GraphQL security testing tool.

GraphQLmap on offsec.tools
GraphQLmap

Scripting engine to interact with a graphql endpoint for pentesting purposes.

InQL on offsec.tools
InQL

Burp Extension for GraphQL Security Testing.

graphw00f on offsec.tools
graphw00f

GraphQL Server Engine Fingerprinting utility for software security professionals.

graphql-introspection-analyzer on offsec.tools
graphql-introspection-analyzer

Graphql introspection query analyzer.