03 Nov 15:17

dolevf

1.12

a171a6e

1.12 Latest

Latest

Added

Add a -f option to force a scan when the endpoint cannot be identified

Fixed

JSON output format was incorrect, fixed by @mjfwebb

Contributors

mjfwebb

Assets 2

04 Sep 01:23

dolevf

1.10

857a6e7

1.10

Added

graphql-cop now iterates through various possible GraphQL endpoints if none is specified @halfluke

Contributors

halfluke

Assets 2

01 Sep 16:03

dolevf

1.9

17560b0

1.9

Fixes

GraphiQL check not catching content due to headers. @halfluke

Contributors

halfluke

Assets 2

29 Aug 18:46

dolevf

1.8

497ab18

1.8

Added

Multi-header support
Changed GET timeout
IDE detection logic

Assets 2

27 Aug 19:48

dolevf

1.7

8788e5c

1.7

Added

better error handling
split tests tracing/exception
add opnames

Assets 2

20 Jun 18:55

dolevf

1.6

5cb9ae0

1.6

Added

Post based CSRF detection

Removed

Circular Fragments, risky.

Assets 2

13 Jun 13:37

dolevf

1.5

35f9e90

1.5

Added

New detection

Fixed
Only print vulnerabilities when not using -o json

Assets 2

28 Apr 17:58

dolevf

1.4

4c41fb5

1.4

Added

Circular Fragment test

Assets 2

16 Apr 16:29

dolevf

1.3

20bf34f

1.3

Added

Circular Query based on Introspection (DoS) check

Assets 2

19 Mar 03:40

dolevf

1.2

fd197ee

1.2

Added

Better JSON output
cURL reproduction commands

Removed

Consolidated HTTP Clients

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Contributors

Contributors

Contributors

Added

Removed

Releases: dolevf/graphql-cop

1.12

Contributors

1.10

Contributors

1.9

Contributors

1.8

1.7

1.6

1.5

1.4

1.3

1.2

Added

Removed