You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: pentesting/pentesting-web/graphql.md
+4
Original file line number
Diff line number
Diff line change
@@ -58,6 +58,10 @@ The last code line is a graphql query that will dump all the meta-information fr
58
58
59
59
If introspection is enabled you can use [**GraphQL Voyager**](https://github.com/APIs-guru/graphql-voyager) to view in a GUI all the options.
60
60
61
+
#### No Introspection
62
+
63
+
More and more **graphql endpoints are disabling introspection**. However, the errors that graphql throws when an unexpected request is received are enough for tools like [**clairvoyance**](https://github.com/nikitastupin/clairvoyance) to recreate most part of the schema.
64
+
61
65
### Quering
62
66
63
67
Now that we know which kind of information is saved inside the database, let's try to **extract some values**.
0 commit comments