API Hacking Tools Archives - Dana Epp's Blog

Learn how to use upstream residential and mobile proxies in Burp Suite to evade IP blocking during your API security testing.

Learn how to improve your API discovery with a custom Burp Suite extension dedicated to automatically finding API document artifacts for you.

Learn how to set up your hacking environment to attack mobile apps & APIs running on modern versions of Android with Burp Suite.

Gain a competitive edge over other security researchers by detecting changes to APIs before others even know about them by using oasdiff.

Learn how to fuzz JSON to find security vulnerabilities in the APIs you are hacking with the help of a custom wordlist and Param Miner.

Learn how to use Param Miner to find hidden parameters that may help manipulate an API in unintended ways, revealing potential security flaws.

Learn how to weaponize API discovery metadata to improve your recon of the APIs you are hacking or conducting security testing on.

Learn why HTTPie is a great replacement for curl and how to use it when conducting your own API security testing.

Learn how to improve your application security code reviews with the help of tools like graudit.

Learn how to write Burp Suite extensions using the new Montoya API with Kotlin and Visual Studio Code (VS Code)

Category: API Hacking Tools