all InfoSec news
GraphQL Automated Vulnerability Scanner
June 18, 2022, 5:51 a.m. | /u/SweatyIntroduction45
cybersecurity www.reddit.com
Posting a tool I made recently to help out going through GraphQL endpoints with introspection enabled. It will grab the schema and go through and check if mutation is enabled, write access pretty much, if there are any sensitive queries, such as listing user details and files, and then it will test queries that it finds with little to no arguments to see if it requires authorization. Following all this it will rate give it a criticality score …
automated cybersecurity graphql scanner vulnerability vulnerability scanner
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Transfer GMP Compliance Officer
@ Pharmathen | Sapes, East Macedonia and Thrace, Greece
Security Cyber Consultant DRC (m/w/d)
@ Atos | Berlin, DE, D-13353
Penetration Tester - InfoSec
@ Rapid7 | NIS Belfast
Cyber Vulnerability Lead
@ Under Armour | Remote, US