GraphQLmap Package

2022-01-17 16:22:22 +01:00 · 2022-01-17 16:22:22 +01:00 · 08413ed409
parent 7df7ae26a8
commit 08413ed409
6 changed files with 27 additions and 5 deletions
--- a/README.md
+++ b/README.md
@ -23,7 +23,8 @@ You can also contribute with a :beers: IRL or using Github Sponsoring button.

 ```basic
 $ git clone https://github.com/swisskyrepo/GraphQLmap
-$ python graphqlmap.py                                                              
+$ python setup.py install
+$ graphqlmap                                                              
   _____                 _      ____  _                            
  / ____|               | |    / __ \| |                           
 | |  __ _ __ __ _ _ __ | |__ | |  | | |     _ __ ___   __ _ _ __  
@ -54,10 +55,10 @@ optional arguments:

 ```py
 # Connect using POST and providing an authentication token
-python3 graphqlmap.py -u https://yourhostname.com/graphql -v --method POST --headers '{"Authorization" : "Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0ZXh0Ijoibm8gc2VjcmV0cyBoZXJlID1QIn0.JqqdOesC-R4LtOS9H0y7bIq-M8AGYjK92x4K3hcBA6o"}'
+graphqlmap -u https://yourhostname.com/graphql -v --method POST --headers '{"Authorization" : "Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0ZXh0Ijoibm8gc2VjcmV0cyBoZXJlID1QIn0.JqqdOesC-R4LtOS9H0y7bIq-M8AGYjK92x4K3hcBA6o"}'

 # Pass request through Burp Proxy
-python graphqlmap.py -u "http://172.17.0.1:5013/graphql" --proxy http://127.0.0.1:8080
+graphqlmap -u "http://172.17.0.1:5013/graphql" --proxy http://127.0.0.1:8080
 ```

 ### Dump a GraphQL schema
--- a/bin/graphqlmap
+++ b/bin/graphqlmap
@ -5,7 +5,7 @@ try:
 except ImportError:
    import pyreadline as readline

-from attacks import *
+from graphqlmap.attacks import *
 import urllib3
 urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)

--- a/graphqlmap/init.py
+++ b/graphqlmap/init.py
--- a/graphqlmap/attacks.py
+++ b/graphqlmap/attacks.py
@ -1,5 +1,5 @@
 #!/usr/bin/python
-from utils import *
+from graphqlmap.utils import *
 import re
 import time

--- a/graphqlmap/utils.py
+++ b/graphqlmap/utils.py
--- a/setup.py
+++ b/setup.py
@ -0,0 +1,21 @@
+import setuptools
+
+with open("README.md", "r") as fh:
+    long_description = fh.read()
+
+setuptools.setup(
+    name="graphqlmap",
+    version="0.0.1",
+    description="scripting engine to interact with a GraphQL endpoint for pentesting purposes",
+    long_description=long_description,
+    long_description_content_type="text/markdown",
+    url="https://github.com/swisskyrepo/GraphQLmap",
+    packages=setuptools.find_packages(),
+    scripts=["bin/graphqlmap"],
+    classifiers=[
+        "Programming Language :: Python :: 3",
+        "License :: OSI Approved :: MIT License",
+        "Operating System :: OS Independent",
+    ],
+    python_requires='>=3.6',
+)