inql
GraphQL tester
A tool for testing GraphQL APIs with vulnerability detection and customizable scans.
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
2k stars
29 watching
158 forks
Language: Python
last commit: 5 months ago
Linked from 3 awesome lists
api-documentation-toolbugbountybugbounty-toolburp-extensionsburpsuitegraphqlgraphql-securitypenetration-testingsecurity-auditsecurity-scannersecurity-tools
chentsulin/awesome-graphql
vavkamil/awesome-bugbounty-tools
escape-technologies/awesome-graphql-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 davinerd/gql_intruder | A tool to assess vulnerabilities in GraphQL endpoints by simulating attacks. | 13 |
 omar2535/graphqler | A tool to dynamically test GraphQL APIs with a focus on context awareness | 126 |
 denniskniep/gqlraider | A Burp Suite extension for inspecting and manipulating GraphQL queries | 21 |
 dolevf/graphql-cop | A tool to scan GraphQL APIs for common security vulnerabilities and report potential issues | 382 |
 assetnote/batchql | A tool to test GraphQL queries and mutations for security vulnerabilities by performing batch attacks | 367 |
 gsmith257-cyber/graphcrawler | Automated testing toolkit for GraphQL APIs | 302 |
 br3akp0int/gqlparser | A tool for parsing and editing GraphQL queries in Burp Suite to help inject payloads into dynamic user input parameters. | 58 |
 graphql-python-archive/django-graphiql | Integrates GraphiQL into Django projects for testing GraphQL schemas | 35 |
 swisskyrepo/graphqlmap | A tool for automating interaction with GraphQL endpoints for pentesting and vulnerability assessment. | 1,390 |
 nicholasaleks/graphql-threat-matrix | A framework to help identify security gaps in GraphQL APIs by analyzing implementation differences and vulnerabilities. | 287 |
| dolevf/damn-vulnerable-graphql-application | An intentionally vulnerable GraphQL implementation to test security | 1,505 |
 zidekmat/graphql_beautifier | Tools for improving readability of GraphQL requests | 30 |
 graphql-editor/graphql-zeus | A tool for generating strongly typed GraphQL clients from a schema | 1,943 |
 piglovesyou/graphql-let | A tool that automates the generation of TypeScript code from GraphQL queries | 454 |
| nicholasaleks/crackql | A utility for automatically generating and sending multiple payload variations to test GraphQL APIs' strength against common attacks such as brute-forcing, password spraying, and fuzzing. | 316 |