About This Course:
API PENETRATION TESTING
- Introduction to What is an API ?
- Interacting with APIs
- Types of APIs
- API Security
- Lab Setup
- Tool Installation
- Burp Suite Introduction
- Postman Introduction
- Docker Introduction
- Enumerating APIs
- Introduction to Enumeration
- Fuzzing APIs
- Discovery via Source Code
- Attacking Authorization
- Introduction to Authorization
- BOLA Lab
- BFLA Labs
- Challenge solution
- Attacking Authentication
- Introduction to Authentication
- Attacking Tokens
- JSON Web Tokens - Part - 1 Theory
- JSON Web Tokens - Part - 2 JWTS
- JSON Web Tokens - Part - 3 JWT Tools
- Introduction to Injection Attacks
- Introduction to SQL Injections
- Mid - Course Capstone
- Mass Management
- NOSQL Injection Labs
- Mass Assignment
- Mass Assignment Labs
- Code Walkthrough
- Excessive Data Exposure
- Excessive Data Exposure Labs
- Challenge Solution
- SSRF Server Side Request Forgery
- Introduction to SSRF
- SSRF Labs