Logo
Damn Vulnerable GraphQL Application

Damn Vulnerable GraphQL Application

#Application Protection#Application Security

SearchCode is an extensive code search engine that indexes 75 billion lines of code from millions of projects to help developers find coding examples and libraries.

Visit Website

Damn Vulnerable GraphQL Application Overview

The Damn Vulnerable GraphQL Application (DVGA) is a purposely weak and insecure implementation of GraphQL. It creates a safe environment for testing attacks on a GraphQL application, enabling developers and IT professionals to identify vulnerabilities. DVGA contains various flaws, including Injections, Code Executions, Bypasses, Denial of Service, and more. Additionally, a public Postman collection is available, allowing users to replay solutions to the challenges. You can easily import the collection by clicking the 'Run in Postman' button below. DVGA offers both Beginner and Expert level game modes, which adjust the difficulty of exploitation.