Dana Epp's Blog
Security (de)engineering for fun and profit
Learn how to look for those old forgotten zombie APIs that can be a goldmine of vulnerabilities and security loopholes.
Learn how to find vulnerabilities in multi-tenant apps and APIs that expose cross-tenant data leaks (CTDL) during your security testing.
Learn the ins and outs of offensive AI and how API hackers can benefit from it.
Read this to understand why you should never blindly trust proof of concept (PoC) exploits shared on GitHub.
When APIs are used as binary bullets in cyber warfare, we should all take notice. Read up on the latest hacks in the Anonymous vs Russia saga.