PortSwigger

Burp Suite DAST GraphQL API

The primary API for integrating with Burp Suite DAST, recommended for all new integrations. Exposes the broadest range of functionality including managing sites, initiating and monitoring scans, retrieving vulnerability issues, configuring agents, and generating reports. Authenticated via API key in the Authorization header at the endpoint your-server/graphql/v1.

GitHub

Documentation

📖
Documentation
https://portswigger.net/burp/documentation/dast/user-guide/api-documentation/graphql-api

Other Resources

🔗
GraphQLSchema
https://portswigger.net/burp/extensibility/enterprise/graphql-api/index.html

API entry from apis.yml

apis.yml Raw ↑ 
aid: portswigger:dast-graphql-api
name: Burp Suite DAST GraphQL API
description: The primary API for integrating with Burp Suite DAST, recommended for all new integrations.
  Exposes the broadest range of functionality including managing sites, initiating and monitoring scans,
  retrieving vulnerability issues, configuring agents, and generating reports. Authenticated via API key
  in the Authorization header at the endpoint your-server/graphql/v1.
humanURL: https://portswigger.net/burp/documentation/dast/user-guide/api-documentation/graphql-api
baseURL: https://your-server/graphql/v1
tags:
- GraphQL
- DAST
- Security Scanning
- Automation
properties:
- type: Documentation
  url: https://portswigger.net/burp/documentation/dast/user-guide/api-documentation/graphql-api
- type: GraphQLSchema
  url: https://portswigger.net/burp/extensibility/enterprise/graphql-api/index.html