Dana Epp's Blog

Security (de)engineering for fun and profit

Hi, I’m Dana Epp.

I write this blog, build and break software for a living, and am a Microsoft Regional Director and Developer Security MVP.

#danaepp

You can subscribe to the API Hacker’s Inner Circle Newsletter here.

LATEST ARTICLES

3 reasons why QA people should get into API hacking

Learn three reasons why QA people should get into API hacking to help secure their company’s apps.
Tracing API exploitability through code review and taint analysis

Learn how to find exploitable vulnerabilities in your APIs using taint analysis.
3 Cyber Warfare Books Every API Hacker Should Read Over The Holidays

Check out the 3 cyber warfare books every API hacker should read to learn about offensive security, past, present, and future.

POPULAR ARTICLES

The Beginner’s Guide to API Hacking

How to get started with web API security testing.
API Security Testing: How to Use OWASP guidance as your blueprint

How to use OWASP guidance as your API security testing blueprint.
Exploit APIs with cURL

Learn how to use cURL in your exploits and demonstrate impact to the API vulnerabilities you find.