API Hacking Techniques Archives - Page 3 of 6

Learn how to write Bambda filters in Burp Suite that can automatically detect uncommon headers in the APIs you are testing.

Learn how to use Structured Format Injection (SFI) through Server Side Parameter Pollution (SSPP) to exploit an API.

Learn how to find “dark data” in the responses to API calls you make during your security testing engagements.

Learn how to write your own Bambda filters in Burp Suite to do complex filtering of your proxy HTTP history.

Learn how to use chaos engineering to break an API on purpose to find new types of vulnerabilities that you don’t normally find in testing.

Learn how to uncover elusive dev, test, and production instances of an API hidden behind virtual hosting through VHOST discovery.

Learn how to bypass API rate limiting security controls using IP rotation in Burp Suite via Amazon API Gateway.

Learn how to use the AI in Eyeballer from BishopFox to help identify interesting targets during recon of your web apps & APIs.

Learn how to prove API exploitability through the use of the Burp Collaborator for out-of-band application security testing (OAST).

Learn how to use contextual discovery and path prediction to find hidden API endpoints during your security testing.

Category: API Hacking Techniques