REST in Peace - Abusing GraphQL to Attack Underlying Infrastructure

REST in Peace - Abusing GraphQL to Attack Underlying Infrastructure

via YouTube Direct link

Intro

1 of 34

1 of 34

Intro

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

REST in Peace - Abusing GraphQL to Attack Underlying Infrastructure

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Agenda
  3. 3 What is GraphQL
  4. 4 Cons of GraphQL
  5. 5 Increased Complexity
  6. 6 Documentation
  7. 7 Motivation
  8. 8 New Attack Methodology
  9. 9 How to Get
  10. 10 Validation
  11. 11 Object Reference Attacks
  12. 12 Mutations
  13. 13 New Data
  14. 14 Debug Mode
  15. 15 GARP
  16. 16 Rust API
  17. 17 Hackers get paid
  18. 18 A typical problem in software development
  19. 19 API mightyfall
  20. 20 Find the Endpoints
  21. 21 Make Requests
  22. 22 Debugging Data
  23. 23 Voyager
  24. 24 Fluent Leverage
  25. 25 Query
  26. 26 Mutation
  27. 27 Authorization
  28. 28 Thread Messages
  29. 29 The Real Problem
  30. 30 Query Cost Analysis
  31. 31 AWS Security Toolkit
  32. 32 GraphQL Verb Extension
  33. 33 Sequel Map
  34. 34 Do you have time

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.