Dana Epp's Blog
Security (de)engineering for fun and profit
Learn how you can make more money in less time on a consistent basis by focusing on API pentesting rather than bug bounty hunting.
Learn how to assess the real costs for application security assessments that include proper penetration testing.
Learn how to look more offensively at API security testing and apply the concept of common attack pattern enumeration to your checklists.
Learn how as a hacker to beat down the demon of self-doubt and embrace imposter syndrome as a healthy signal for motivation and drive.
Check out the 3 cyber warfare books every API hacker should read to learn about offensive security, past, present, and future.
Avoid these beginner mistakes as you start your API hacking journey.
API hacking is NOT a crime. Hackers are not criminals. Criminals are criminals. And if you see it any other way, you can byte me.
Hacking APIs for fun and profit requires you to know how long to stay on target, and knowing when to give up. Let’s discuss.
Learn about the careers you can get into to make money hacking APIs.