Hacking APIs
About the course
Notes from the course "APIsec Certified Expert" a practical course in API hacking imparted by Corey J. Ball.
Course: https://university.apisec.ai/
Book: https://www.amazon.com/Hacking-APIs-Application-Programming-Interfaces/dp/1718502443
Instructor: Corey J. Ball.
General index of the course
- Setting up the environment
- Setting up the labs + Writeups
- Api Reconnaissance.
- Endpoint Analysis.
- Scanning APIS.
- API Authorization Attacks.
- Exploiting API Authorization.
- Testing for Improper Assets Management.
- Mass Assignment.
- Server side Request Forgery.
- Injection Attacks.
- Evasion and Combining techniques.