Skip to content
@Escape-Technologies

Escape - Offensive security for the teams that are 100x outnumbered

Replace legacy scanners and manual offensive security processes with AI agents that discover, test, and remediate directly in your engineering workflows
README.md

👋 Welcome to our repo

Escape


Our Website   •   Security Blog   •   API Security Academy   •   Case Studies   •   Docs

👋 Hello again

Escape automates the full offensive security lifecycle, multiplying the impact of every security engineer tenfold. Our goal is to replace legacy scanners and manual offensive security processes with AI agents that discover, test, and remediate directly in your engineering workflows 😉

🤝 Join our team

We believe it’s time to bring more AI-driven innovation to cybersecurity, and we'd love your help in building this dream! Want to join our adventure? Check out our Careers page!

🧙 Open source repos

At Escape, alongside our work on application discovery, API security, and Dynamic Application Security Testing (DAST), we've also been developing some fantastic open-source projects. Let us introduce you to all of them 🚀

  • API Security Academy, an interactive platform dedicated to helping you learn how to secure #graphql applications.

  • Goctopus, a GraphQL endpoint discovery and fingerprinting tool.

  • GraphQL wordlist, the only GraphQL wordlist for #pentesting you'll ever need. Operations, field names, type names... It was collected on more than 60k distinct GraphQL schemas.

  • GraphQL Armor, a middleware for Apollo GraphQL Server that adds a security layer to any GraphQL endpoint in minutes. It's also compatible with The Guild Software's Envelop universal plugin system.

  • GraphMan, a tool that helps you to scaffold a Postman collection for a GraphQL API. Compatible with Postman & Insomnia from Kong Inc.

  • Graphinder, a lightweight and blazing-fast GraphQL endpoint finder, making penetration testing on GraphQL much faster

  • Mookme, a git hook manager, designed monorepos for dealing with different projects and languages, automated filtering, and ease of configuration and setup.

  • PyMultiAuth-Archived, an open-source Python library that allows users to authenticate and reauthenticate automatically.

👀 Upcoming events & Resources

👋 Stay in touch

Pinned Loading

  1. graphql-armor graphql-armor Public

    🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / Envelop servers 🛡️

    TypeScript 578 46

  2. graphql-wordlist graphql-wordlist Public

    The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

    TypeScript 457 50

  3. awesome-graphql-security awesome-graphql-security Public

    A curated list of awesome GraphQL Security frameworks, libraries, software and resources

    355 27

  4. graphman graphman Public

    Quikly scaffold a postman collection for a GraphQL API. Compatible with Postman & Insomnia.

    TypeScript 250 12

  5. mookme mookme Public archive

    A pre-commit tool designed for monorepos.

    TypeScript 105 14

  6. goctopus goctopus Public

    Blazing fast GraphQL discovery & fingerprinting toolbox.

    Go 128 12

Repositories

Showing 10 of 30 repositories
  • cloudfinder Public

    Detect the cloud / hosting provider of a given host. Fast, static & offline

    Escape-Technologies/cloudfinder’s past year of commit activity
    Go 10 MIT 2 0 0 Updated Mar 21, 2026
  • graphql-armor Public

    🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / Envelop servers 🛡️

    Escape-Technologies/graphql-armor’s past year of commit activity
    TypeScript 578 MIT 46 2 28 Updated Mar 20, 2026
  • cli Public

    escape-cli

    Escape-Technologies/cli’s past year of commit activity
    Go 5 Apache-2.0 1 0 1 Updated Mar 20, 2026
  • .github Public
    Escape-Technologies/.github’s past year of commit activity
    0 0 0 0 Updated Mar 9, 2026
  • juice-shop Public Forked from juice-shop/juice-shop

    OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

    Escape-Technologies/juice-shop’s past year of commit activity
    TypeScript 0 MIT 17,056 0 0 Updated Mar 5, 2026
  • gitlab-auto-labels Public

    Automaticaly add some labels to your merge requests on gitlab.

    Escape-Technologies/gitlab-auto-labels’s past year of commit activity
    Python 2 GPL-3.0 1 1 0 Updated Jan 28, 2026
  • awesome-attack-surface-management Public

    A curated collection of tools, techniques, frameworks, and learning resources focused on Attack Surface Management (ASM).

    Escape-Technologies/awesome-attack-surface-management’s past year of commit activity
    30 CC0-1.0 4 0 0 Updated Jan 13, 2026
  • python-project-template Public template

    Professional grade typed Python 3.13+ project scaffold with contemporary-relevant testing, linting and formatting rules.

    Escape-Technologies/python-project-template’s past year of commit activity
    Makefile 4 MIT 1 0 5 Updated Sep 30, 2025
  • action Public
    Escape-Technologies/action’s past year of commit activity
    Shell 5 MIT 1 0 0 Updated Aug 25, 2025
  • browser-use Public Forked from browser-use/browser-use

    🌐 Make websites accessible for AI agents. Automate tasks online with ease.

    Escape-Technologies/browser-use’s past year of commit activity
    Python 0 MIT 9,709 0 1 Updated Aug 22, 2025
View all repositories

Most used topics

Loading…