Skip to content

Commit

Permalink
Merge pull request #3 from dolevf/combined_detect_fingerprint
Browse files Browse the repository at this point in the history 
Combined detect fingerprint
  • Loading branch information
@dolevf
dolevf authored Sep 12, 2021
2 parents 199c7c4 + 098285c commit 4bed935
Show file tree
Hide file tree
Showing 2 changed files with 46 additions and 4 deletions.
48 changes: 45 additions & 3 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,9 @@
* [GraphQL Technologies Defence Matrices](#graphql-technologies-defence-matrices)
* [Prerequisites](#prerequisites)
* [Installation](#installation)
* [Example Usage](#example)
* [Fingerprinting GraphQL](#fingerprinting-graphql)
* [Detecting & Fingerprinting GraphQL](#detecting-and-fingerprinting-graphql)
* [Support & Issues](#support-and-issues)
* [Resources](#resources)

Expand Down Expand Up @@ -76,7 +79,7 @@ Options:
-r, --noredirect Do not follow redirections given by 3xx responses
-t URL, --target=URL target url with the path
-f, --fingerprint fingerprint mode
-d, --detect detect mode (without fingerprinting)
-d, --detect detect mode
-o OUTPUT_FILE, --output-file=OUTPUT_FILE
Output results to a file (CSV)
-l, --list List all GraphQL technologies graphw00f is able to
Expand All @@ -85,8 +88,11 @@ Options:
```

# Example
## Fingerprinting GraphQL
This is an example how to fingerprint (`-f`) an endpoint where GraphQL's location is known ahead of time (`/graphql`)

```
python3 main.py -t https://demo.hypergraphql.org:8484/graphql -f
python3 main.py -f -t https://demo.hypergraphql.org:8484/graphql
+-------------------+
| graphw00f |
Expand All @@ -104,7 +110,7 @@ python3 main.py -t https://demo.hypergraphql.org:8484/graphql -f
| Node Z |
+------------+
graphw00f - v1.0.3
graphw00f - v1.0.4
The fingerprinting tool for GraphQL
Dolev Farhi <[email protected]>
Expand All @@ -117,6 +123,42 @@ python3 main.py -t https://demo.hypergraphql.org:8484/graphql -f
[!] Homepage: https://www.hypergraphql.org
[*] Completed.
```

## Detecting and Fingerprinting GraphQL
This is an example how graphw00f can detect (`-d`) where GraphQL lives and then execute the fingerprinting process (`-f`).

```
python3 main.py -f -d -t http://localhost:5000
+-------------------+
| graphw00f |
+-------------------+
*** ***
** ***
** **
+--------------+ +--------------+
| Node X | | Node Y |
+--------------+ +--------------+
*** ***
** **
** **
+------------+
| Node Z |
+------------+
graphw00f - v1.0.4
The fingerprinting tool for GraphQL
Dolev Farhi <[email protected]>
[*] Checking http://dvga.example.local:5000/graphql
[!] Found GraphQL at http://dvga.example.local:5000/graphql
[*] Attempting to fingerprint...
[*] Discovered GraphQL Engine: (Graphene)
[!] Attack Surface Matrix: https://github.com/dolevf/graphw00f/blob/main/docs/graphene.md
[!] Technologies: Python
[!] Homepage: https://graphene-python.org
[*] Completed.
```
# Support and Issues
Any issues with graphw00f such as false positives, inaccurate detections, bugs, etc. please create a GitHub issue with environment details.
Expand Down
2 changes: 1 addition & 1 deletion main.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ def main():
help='Do not follow redirections given by 3xx responses')
parser.add_option('-t', '--target', dest='url', help='target url with the path')
parser.add_option('-f', '--fingerprint', dest='fingerprint', default=False, action='store_true', help='fingerprint mode')
parser.add_option('-d', '--detect', dest='detect', default=False, action='store_true', help='detect mode (without fingerprinting)')
parser.add_option('-d', '--detect', dest='detect', default=False, action='store_true', help='detect mode')
parser.add_option('-o', '--output-file', dest='output_file',
help='Output results to a file (CSV)', default=None)
parser.add_option('-l', '--list', dest='list', action='store_true', default=False,
Expand Down

0 comments on commit 4bed935

Please sign in to comment.