Specialized Testing: API Testing
In the age of APIs, ensuring their bullet-proof security is paramount. This course will teach you how to probe APIs for different injection vulnerabilities, gather pentesting information, and use it to potentially exploit such vulnerabilities in APIs
Many APIs today are not subject to sufficient security pentesting. The main reason usually centers around lack of knowledge for conducting pentesting specifically targeted at APIs. In this course, Specialized Testing: API Testing, you’ll learn to pentest APIs for injection vulnerabilities. First, you’ll explore gathering potential vulnerability information from response payloads of your API. Next, you’ll discover how to interpret this data to glean valuable pentesting information. Finally, you’ll learn how to use that information to pentest the API’s vulnerable endpoints. When you’re finished with this course, you’ll have the skills and knowledge of performing pentesting for different injection types needed to protect your APIs by mitigating or completely eliminating its injection vulnerabilities.
Author Name: George Smith
Author Description:
George Smith has spent more than 25 years in the IT industry. During this time he has held a variety of positions, starting with web UI development and business analysis, progressing with system administration and infrastructure, then switching to core systems programming, technical consulting, and finally becoming an E-Commerce Architect and Subject Matter Expert. He is well versed in modern trends like Containerization, Infrastructure as Code, Serverless computing models, and more. George demo… more
Table of Contents
- Course Overview
1min - Gathering API Pentesting Intelligence
20mins - Analyzing API Response Data
14mins - Crafting Requests to Exploit Vulnerabilities
20mins
There are no reviews yet.