-
3 reasons why QA people should get into API hacking
Learn three reasons why QA people should get into API hacking to help secure their company’s apps.
-
Tracing API exploitability through code review and taint analysis
Learn how to find exploitable vulnerabilities in your APIs using taint analysis.
-
3 Cyber Warfare Books Every API Hacker Should Read Over The Holidays
Check out the 3 cyber warfare books every API hacker should read to learn about offensive security, past, present, and future.
-
Attacking predictable GUIDs when hacking APIs
Learn how to predict and pwn GUIDs used in APIs.
-
API Pentesting 101: The Rules of Engagement
Learn the rules of engagement when pentesting APIs.
-
7 Essential Burp Extensions for Hacking APIs
Check out the coolest extensions to help out when hacking APIs in Burp.
-
5 big mistakes beginners make hacking APIs
Avoid these beginner mistakes as you start your API hacking journey.
-
Can SBOM help you attack APIs?
Learn how you can leverage the data in a software bill of materials (SBOM) document to find vulnerabilities in API dependencies.
-
Attacking Microsoft Graph with Postman
Learn how to use Postman to attack the Microsoft Graph API.
-
Automate your API hacking with Autorize
Learn how to find authorization vulnerabilities in APIs using Burp and Autorize.
Dana Epp's Blog
Security (de)engineering for fun and profit