Master GraphQL hacking from the authors who wrote Black Hat GraphQL. This (part 2) advanced hacking course builds on top of the foundational knowledge you gained about GraphQL internals in part 1. Leveraging a custom hacking lab, you’ll delve into the details of how to execute numerous GraphQL attacks such as:

• Reconnaissance Techniques

• Information Disclosure

• Denial of Service Attacks

• Authentication & Authorization Bypasses

• Injection Exploits

• Request Forgery & Hijacking

  • Cross-site request forgery

  • Server-side request forgery

Learn about GraphQL hacking from the authors who wrote Black Hat GraphQL. This crash course into GraphQL will give you a hands-on approach to learning about how this rapidly adopted API technology works and how its internals can be used as attack vectors.

• Basics of GraphQL communications, language and type system

• Build your own GraphQL hacking lab with a vulnerable target server and popular GraphQL hacking utilities

• Understand the basics of GraphQL vulnerabilities