Finding a Hidden GraphQL Endpoint

In this video, we will see how we can bypass authentication when introspection query is disabled and identify hidden graphql endpoints.
.
.
Introspection Query: https://github.com/medusa0xf/GraphQL-...
PortSwigger Lab: https://portswigger.net/web-security/...
.
.
Blogs:   / medusa0xf  
.
.
.
Social media:
Twitter:   / medusa_0xf  
.
.
.
Discord:   / discord  
.
.
.
Like and Subscribe :)
.
.
.
#api #owasp #portswigger #bugbounty #bola #postman #pentesting #api #hack #bola #tryhackme #hackerone #apihacking #computerscience #javascript #python #postman #ctf #bughunting #pentesting #hacking #hackingtools #burpsuite #portswigger #ethicalhacking #OAuth #webhacking #programming #websecurity #technology #practical #artificialintelligence #web #recon #bypass