| Description |
1 online resource |
| Note |
Includes index. |
| Contents |
Preparing for API security testing -- How web applications work -- The anatomy of web APIs -- API insecurities -- Setting up vulnerable API targets for testing -- Analysis and attribution -- Discovering APIs -- Endpoint analysis -- Authentication attacks -- Fuzzing -- Exploiting API authorization -- Exploiting mass assignment -- API injection -- Evasive techniques and rate limit testing -- Hacking APIs -- Breaches and bounties. |
| Summary |
"Teaches how to penetration-test APIs, make APIs more secure, set up a streamlined API testing lab with Burp Suite and Postman, and master tools for reconnaissance, endpoint analysis, and fuzzing. Topics covered include REST and GraphQL APIs, API authentication mechanisms, vulnerabilities, and techniques for bypassing protections. Includes nine guided labs"-- Provided by publisher. |
| Subject |
Application program interfaces (Computer software)
|
|
Application software -- Development.
|
|
Interfaces de programmation d'applications. |
|
Logiciels d'application -- Développement. |
|
APIs (interfaces) |
|
Application program interfaces (Computer software) |
|
Application software -- Development |
| Added Title |
Hacking application program interfaces |
| Other Form: |
Print version: Ball, Corey Hacking APIs San Francisco : No Starch Press, [2022] 9781718502444 (DLC) 2021061101 |
| ISBN |
1718502451 |
|
9781718502451 (electronic bk.) |
|
(paperback) |
|
More Resources