// Comparison
Black Hat GraphQL vs Bug Bounty Bootcamp: Which Should You Read?
Two cybersecurity books on Web Security, compared honestly: who each is for, what each does best, and which to read first.
Aleks and Farhi on attacking GraphQL specifically: introspection abuse, batching, depth and complexity attacks, auth flaws, and the differences from REST that make GraphQL pentests their own discipline.
Vickie Li's pragmatic walk through the bug-bounty workflow, from picking a program and recon to reporting findings that actually pay out.
Read this if
Skip this if
Key takeaways
- Disabled introspection is not a security control; the book explains how to enumerate schemas without it and why that matters.
- Batching and aliasing attacks let one HTTP request do many things; classic rate-limit defenses fail unless GraphQL-aware.
- Depth and complexity attacks are the GraphQL equivalent of regex DoS, usually possible, often forgotten, sometimes catastrophic.
- The recon chapter (subdomains, GitHub leaks, archived endpoints) alone justifies the book; most beginners skip recon and miss most of the bounty.
- The chapters on race conditions and business logic flaws cover bug classes that don't show up in older textbooks but pay regularly today.
- Li's writing on reports, triage interaction, and disclosure ethics is the calmest and most professional section in the bug-bounty book market.
How they compare
Black Hat GraphQL and Bug Bounty Bootcamp are both rated 4/5 in our catalog. Pick by topic preference and reading style rather than by rating.
Black Hat GraphQL is pitched at intermediate level. Bug Bounty Bootcamp is pitched at beginner level. Read the easier one first if you're not yet comfortable with the topic.
Black Hat GraphQL and Bug Bounty Bootcamp both cover Web Security, Offensive, so reading them in sequence reinforces the same material from different angles.