Preview Mode Links will not work in preview mode

Oct 2, 2019

Derbycon Discussion (bring Matt in)


Python course: 

PDF Slides: 


GraphQL High Level

Designed to replace REST Arch

Allow you to make a large request, uses a query language

Released by FB in 2012



Learn Enough to be dangerous




Vulns in the Wild


Abusing GraphQL 


OWASP Deserialization Cheat Sheet -

Attack Techniques

Protecting GraphQL


Magento 2 (runs GraphQL), hard to update… - Matt’s tool on Shapeshifter


GraphQL implementations inside (ecosystem packages?)


Infosec Campout 2020 occurring (28-29 Aug 2020, Carnation, WA)

Patreon supporters  (Josh P and David G)



For Amanda next:

& keynote @grrcon oct 24/25


Check out our Store on Teepub!

Join us on our #Slack Channel! Send a request to @brakesec on Twitter or email

#Brakesec Store!:



#Youtube Channel:

#iTunes Store Link:

#Google Play Store:

Our main site:

#iHeartRadio App:


Comments, Questions, Feedback:

Support Brakeing Down Security Podcast by using our #Paypal OR our #Patreon

#Twitter@brakesec @boettcherpwned @bryanbrake @infosystir

#Player.FM :

#Stitcher Network:

#TuneIn Radio App: