RAML RAML Specification Tools NameDescription GraphQL BatchQL GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations. clairvoyance Obtain GraphQL API schema despite disabled introspection! InQL InQL - A Burp Extension for GraphQL Security Testing. graphinder ...
Business logic vulnerabilities—APIs are not only vulnerable to security exploits, like injections or other ‘trivial’ attacks.. They may also have gaps or errors in functionality that can create severe logic based security issues, which are typically only tested for manually by security experts. ...
RAML RAML Specification Tools NameDescription GraphQL BatchQL GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations. clairvoyance Obtain GraphQL API schema despite disabled introspection! InQL InQL - A Burp Extension for GraphQL Security Testing. graphinder ...
SecLists for API's web-content discovery It is a collection of web content discovery lists for APIs used during security assessments. GraphQL wordlist The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.HTTP...