API Hacking Toolbox w/ Dr. Katie Paxton-Fear

preview_player
Показать описание
API Security starts with understanding your API inventory and the business risk of your APIs.

In this educational session with Dr. Katie Paxton-Fear, she shares her perspective on the API hacking tools in her kit as she researches and studies API security. She will share how she approaches an API security hacking/testing exercise in order to evaluate a potential target and then the tools she would use to assess APIs for specific vulnerabilities.

  1. Traceable AI
  2. cybersecurity
  3. ML
  4. Machine Learning
  5. AI
  6. artificial intelligence
Рекомендации по теме
API Hacking Toolbox 0:26:44

API Hacking Toolbox w/ Dr. Katie Paxton-Fear

API Hacking 101, 0:54:34

API Hacking 101, w/ Dr. Katie Paxton-Fear | by Traceable AI

API Hacking Stories 0:21:27

API Hacking Stories - Cautionary Tales w/ Dr. Katie Paxton-Fear

Hacking APIs: Fuzzing 0:13:29

Hacking APIs: Fuzzing 101

API Hacking Demo 0:13:35

API Hacking Demo | Bug Bounty Web App Testing

API Hacking - 0:16:52

API Hacking - Alasan Mengapa Kalian Harus Belajar API Hacking 2022 | #api #hacking #ethicalhacking

How To Hack 0:47:54

How To Hack An API In 15 Minutes - Igor Matlin

API Penetration Test 0:12:37

API Penetration Test + Burp + Postman

Hack EVERY API! 0:08:00

Hack EVERY API! KiteRunner - Hacker Tools

What is a 0:05:53

What is a BOLA Vulnerability? Hacking APIs Part 1

API Hacking With 0:13:28

API Hacking With ChatGPT!

Free Hacking APIs 0:28:19

Free Hacking APIs Course (APISEC University!)

Live API Hacking 0:48:11

Live API Hacking Demo

API Recon with 0:34:20

API Recon with Kiterunner - Hacker Toolbox

Tools for hacking 0:02:24

Tools for hacking APIs

APISEC Course - 0:00:43

APISEC Course - Learn to hack APIs

HakByte: How to 0:14:59

HakByte: How to use Postman to Reverse Engineer Private APIs

Hacking APIs and 1:07:49

Hacking APIs and Cars: You need to learn this in 2023!

Alissa Knight - 0:09:50

Alissa Knight - Hacking APIs

SULTAN MEDAN INDRAKENZ 0:00:21

SULTAN MEDAN INDRAKENZ NAIK JET PRIBADI KE PULAU PRIBADI!!

FREE copy of 0:00:13

FREE copy of Hacking APIs book! #apisecurity

Free API Hacking 0:42:30

Free API Hacking course!

Next Level API 0:08:02

Next Level API Hacking with Kiterunner

API Hacking Finding 0:13:58

API Hacking Finding Endpoints 01

Комментарии
Автор

Thanks Traceable and Dr. Paxton-Fear for sharing the knowledge to encourage and educate the community.

BobBob-qmbm
Автор

Dr. Katie Paxton-Fear’s such a wealth of knowledge and does an excellent job explaining concepts that can be otherwise confusing.

Thank you for this discussion ❤

AshleyEhSMR
Автор

🎯 Key Takeaways for quick navigation:

01:15 🛠️ Katie Paxton-Fear introduces her API hacking toolbox for finding vulnerabilities.
02:25 🧩 API testing involves using supportive tools to navigate APIs effectively.
04:01 🗺️ Enumeration identifies API endpoints and vulnerabilities for attack planning.
07:58 🔄 Automation eases API enumeration, reducing the challenge of handling numerous endpoints.
12:46 📜 Tailored wordlists using common nouns, verbs, and actions are effective for API testing.
15:06 ⚙️ Automated tools aid in API enumeration and vulnerability assessment.
19:26 🚪 Use "Authorize" tool to detect Idols (Broken Object/Function Level Authorization).
22:23 📑 Identify data leaks using regex patterns for emails and postcodes.
24:11 🎭 Analyze JSON Web Tokens for security vulnerabilities with the JWT Tool.
25:34 🛠️ Supportive tools enhance manual testing efficiency for effective black box testing.

Made with HARPA AI

looperdup
Автор

Yup teach me more for the dorks and nerds

johntoes
Автор

My name is mark, please I have big challenge, I have a platform am carrying out bug boungting, but the platform is using bearer token auth, so each time I carry out parameter tempering I get 401, unauthorized, how do I bypass 401, and we’re is the problem coming from, is in url or the bearer token detecting that have change the original parameter ??

EmmyEmmy-ou