Adding support for GraphQL (--graphql)

2026-06-28 12:31:00 +00:00 · 2026-06-27 19:23:30 +02:00 · 2026-06-27 19:23:30 +02:00 · f6912fc921
commit f6912fc921
parent 2893fd5c4d
11 changed files with 2207 additions and 8 deletions
--- a/lib/controller/controller.py
+++ b/lib/controller/controller.py
@ -504,8 +504,21 @@ def start():
                    infoMsg = "testing URL '%s'" % targetUrl
                    logger.info(infoMsg)

+            if conf.graphql and PLACE.GET not in conf.parameters:
+                # graphqlScan() is self-contained and operates on the GraphQL
+                # document, not on HTTP parameters. A dummy GET parameter keeps
+                # _setRequestParams() from appending the URI injection marker ('*')
+                # to a bare endpoint URL (which would break detection under
+                # '--batch'); it is discarded by graphqlScan() on entry.
+                conf.parameters[PLACE.GET] = "x"
+
            setupTargetEnv()

+            if conf.graphql:
+                from lib.techniques.graphql.inject import graphqlScan
+                graphqlScan()
+                continue
+
            if not checkConnection(suppressOutput=conf.forms):
                continue