offensive-graphql
CommunityGraphQL security testing checklist.
Software Engineering#authorization#injection#graphql#introspection#api-security#security-testing#dos
Authorriparino
Version1.0.0
Installs0
System Documentation
What problem does it solve?
GraphQL security testing complexities and misconfigurations, including introspection exposure, authorization gaps, and vulnerability opportunities in GraphQL APIs.
Core Features & Use Cases
- Introspection risk assessment and schema review to identify sensitive types and fields.
- Authorization testing and IDOR, mutation access checks across roles and permissions.
- Injection and DoS testing for queries, mutations, and subscriptions, with guidance on remediation.
Quick Start
Identify the GraphQL endpoint and apply the full vulnerability checklist to assess security posture.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: offensive-graphql Download link: https://github.com/riparino/Claude-Cyber/archive/main.zip#offensive-graphql Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.