Hi, I’m Dana Epp.
I write this blog, build and break software for a living, and am a Microsoft Regional Director and Developer Security MVP.
You can subscribe to the API Hacker’s Inner Circle Newsletter here.
Hacking APIs on IoT devices using a Flipper Zero
Read this to understand why you should never blindly trust proof of concept (PoC) exploits shared on GitHub.
Write your own extensions in Python to pwn your API targets with BurpSuite
How to get started with web API security testing.
How to use OWASP guidance as your API security testing blueprint.
Learn how to use cURL in your exploits and demonstrate impact to the API vulnerabilities you find.