在线时间:8:00-16:00
迪恩网络APP
随时随地掌握行业动态
扫描二维码
关注迪恩网络微信公众号
开源软件名称(OpenSource Name):doyensec/inql开源软件地址(OpenSource Url):https://github.com/doyensec/inql开源编程语言(OpenSource Language):Python 99.2%开源软件介绍(OpenSource Introduction):InQL ScannerA security testing tool to facilitate GraphQL technology security auditing efforts. InQL can be used as a stand-alone script or as a Burp Suite extension. InQL Stand-Alone CLIRunning
InQL can inspect the introspection query results and generate clean documentation in different formats such as HTML and JSON schema. InQL is also able to generate templates (with optional placeholders) for all known basic data types. For all supported options, check the command line help:
InQL Burp Suite ExtensionSince version 1.0.0 of the tool, InQL was extended to operate within Burp Suite. In this mode, the tool will retain all the stand-alone script capabilities and add a handy user interface for manipulating queries. Using the
To use
Burp Extension UsageGetting started with the
InQL Stand-Alone UISince version 2.0.0, InQL UI is able to operate without requiring BURP.
It is now possible to install InQL stand-alone for In this mode, InQL maintains most of the Burp Scanner capabilities except for advanced interactions such as "Send To Repeater" and automatic authorization header generation, available through BURP. To use
NDR: At the current stage Jython does not support HTTP/2. Any request to an HTTP/2 server will fail silently. We advise to use the Burp to bypass this limitation temporarily. Burp GraphQL Query TimerSince version 3.0.0, InQL has an integrated Query Timer. This Query Timer is a reimagination of Request Timer, which can filter for query name and body. The Query Timer is enabled by default and especially useful in conjunction with the Cycles detector. A tester can switch between graphql-editor modes (Repeater and GraphIQL) to identify DoS queries. Query Timer demonstrates the ability to attack such vulnerable graphql endpoints by counting the execution time of each and every query. InQL Documentation GeneratorIn either BURP or Stand-Alone mode, InQL can generate meaningful documentation for available GraphQL entities. Results are available as HTML pages or query templates. The resulting HTML documentation page will contain details for all available The following screenshot shows the use of templates generation: InQL Precise QueriesBased on InQL's introspection intermediate representation (IIR), the tool is able to generate arbitrarily nested queries with support to any scalar type, enumerations, arrays, and objects. query {
Character(id_not_in:[1334], sort:[ROLE_DESC], search:"code", id_not:1334, id:1334, id_in:[1334]) {
image {
large
}
siteUrl
favourites
modNotes
description(asHtml:true)
media(sort:[TITLE_ROMAJI], type:ANIME, perPage:1334, page:1334) {
edges {
isMainStudio
}
}
name {
last
}
id
isFavourite
updatedAt
}
} While this enables seamless "Send to Repeater" functionality from the Scanner to the other tool components (Repeater and GraphiQL console), it is still not possible for the tool to infer placeholders for GraphQL Custom Scalars. InQL Cycles DetectorThe new introspection intermediate representation (IIR) allows to inspect for cycles in defined graphql schemas by requiring access to graphql introspection-enabled endpoint only. This functionality is especially useful and automates bothersome testing practices employing graph solving algorithm. In our test, the tool was able to find millions of cycles in a matter of minutes. CreditsAuthor and Maintainer: Andrea Brancaleoni (@nJoyneer - thypon) This project was made with love in Doyensec Research island. |
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
请发表评论