To try it out, from your audit configuration, go to Audit optimization > Audit accuracy and select Minimize false negatives. While we refine it to reduce the number of false positives it generates, we've disabled this check when using Normal audit accuracy. We've added an experimental new scan check for broken access control vulnerabilities. The editor now automatically colors your keywords, literals, functions, and variables, making it easier to read and edit BCheck definitions. We've added syntax highlighting to the BChecks editor. Additionally, you can save the results of your introspection query to the site map, giving you a clear overview of the attack surface and potential vulnerabilities in GraphQL APIs. We've added functionality that makes it possible to generate and send an introspection query in just a few short clicks. This tab separates the GraphQL query from the rest of the request, and formats it in a way that makes it easy to view and edit the query structure and its associated variables. When Burp detects a GraphQL request from your target, it adds a GraphQL tab to the message editor for the request. This release introduces new tools that make it simpler and more efficient to work with GraphQL APIs in Burp Suite. This release introduces new features for manual testing of GraphQL APIs, BChecks syntax highlighting, and broken access control scan checks.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |