Tag

AI-native SAST tool for code security, detecting vulnerabilities, secrets, IaC issues, and AI model security with actionable AI fixes.

GraphQL Cop is a Python utility for running security tests against GraphQL APIs, ideal for CI/CD checks and vulnerability reproduction.

Assess the security of your GraphQL apps: authorization, access control, complexity limits, introspection, DDOS, and injections.

GraphQL Voyager: Visualize any GraphQL API as an interactive graph, aiding in understanding and exploration of its schema and relationships.

GraphQLmap is a scripting engine for GraphQL endpoint pentesting, automating queries and fuzzing for vulnerabilities.

InQL is a Burp Suite extension for advanced GraphQL testing, offering vulnerability detection and customizable scans.

Interactsh is a tool and service for capturing and handling out-of-band interactions during security testing.

JWT Debugger is a web application to create, encode, decode, and debug JWT (JSON Web Tokens).

Kiterunner is a contextual content discovery tool for modern web applications and APIs, excelling in route/endpoint bruteforcing.

LeakInsight API is a data leak detection service that helps developers and businesses identify leaked credentials and security risks across a vast database.

Moxy is an open-source DAST tool with agentic AI for modern web application security testing and automated pentesting workflows.

A comprehensive collection of payloads and bypasses for web application security testing and exploitation.