Forging GraphQL Bombs, the 2022 version of Zip Bombs

This page summarizes the projects mentioned and recommended in the original post on /r/Pentesting
GraphQL maintained

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • graphql-multipart-request-spec

    A spec for GraphQL multipart form requests (file uploads).

    • We figured out that it was possible to reference a file several times by implementing the reference spec (https://github.com/jaydenseric/graphql-multipart-request-spec) for both a client and a server. We have no record of this vulnerability used in the wild, but we know for sure that a lot of popular projects on GitHub are vulnerable.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • How can I upload a file in the GraphQL PLayground?

    3 projects | /r/graphql | 7 Jul 2023

  • GraphQL - From Excitement to Deception

    3 projects | /r/programming | 9 Apr 2023

  • Is it possible to pass CSV data to a mutation as an input parameter?

    1 project | /r/graphql | 2 Nov 2022

  • Forging GraphQL Bombs, the 2022 version of Zip Bombs

    1 project | dev.to | 12 Aug 2022

  • How to set file data in GraphQL variables?

    1 project | /r/graphql | 3 Aug 2022