Black Hat GraphQL: Attacking Next Generation APIs

"Black Hat GraphQL" is a guide for security professionals interested in learning how to attack GraphQL APIs. The book explains the fundamentals of GraphQL, including its schema, type system, and query language, and identifies vulnerabilities in GraphQL implementations, such as denial of service, injection, information disclosure, and authentication and authorization bypasses. The authors provide practical examples and techniques for exploiting these vulnerabilities, along with tools and resources to help readers build a GraphQL security lab and test their skills. The book highlights common vulnerabilities found in popular GraphQL applications like HackerOne, GitLab, and Shopify, and examines real-world exploits that have been successfully used to compromise these applications.

You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cyber_security_summary

Get the Book now from Amazon:
https://www.amazon.com/Black-Hat-GraphQL-Attacking-Generation/dp/1718502842?&linkCode=ll1&tag=cvthunderx-20&linkId=546445752ded7954a9abc4dcbbf320d0&language=en_US&ref_=as_li_ss_tl