InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
A new proxy scraper using a separate data structure has been implemented (proxy_listener.py).
I have added a new button, alongside the load one, to allow the user to set custom headers before loading a particular URL.
I have rewritten the header selector. Now it is implemented as a separate component compared to the "PropertyEditor" one.
Property Editors and Headers Selectors are now different components. The latter is divided into two tabs: custom and scraped headers. Only custom headers can be included in requests made through the Burp suite, however, it is easy to move headers from the scraped to the custom tab. Moreover, only flagged custom headers will be included, making it easier to select the necessary one without losing headers that might become handy later.
Moreover, I included the change to the logic condition in the attacker_tab.py and generator_tab.py that I also proposed as a separate pull request to the master branch.
thypon
commented
1 year ago
This pull request resolves #84.
A new proxy scraper using a separate data structure has been implemented (
proxy_listener.py). I have added a new button, alongside the load one, to allow the user to set custom headers before loading a particular URL. I have rewritten the header selector. Now it is implemented as a separate component compared to the "PropertyEditor" one. Property Editors and Headers Selectors are now different components. The latter is divided into two tabs: custom and scraped headers. Only custom headers can be included in requests made through the Burp suite, however, it is easy to move headers from the scraped to the custom tab. Moreover, only flagged custom headers will be included, making it easier to select the necessary one without losing headers that might become handy later.Moreover, I included the change to the logic condition in the
attacker_tab.pyandgenerator_tab.pythat I also proposed as a separate pull request to themasterbranch.