filmov
tv
BOLA, IDOR, MA, BFLA. Welcome to the OWASP API Top 10!
Показать описание
In this presentation, Adam will introduce the audience to the OWASP API TOP 10 Security Threats. Adam will highlight the unique attack vectors that API Applications face, review specific breach examples, and why OWASP felt it necessary to specifically highlight these vulnerabilities in a new Top 10 list. We will also explore various efforts by the security industry to secure API Applications and what businesses should expect as they evaluate an API security solution.
Bio: Adam Fisher is an Enterprise Security Expert whose qualifications include a Bachelor of Science in Information Systems, Master of Business in Information Technology Management, and maintains a number of certifications, CISSP, CCSP, AWS Security Associate, Azure MCP. Adam has a detailed knowledge of Enterprise Security best practices and technologies and has been focused on the creation and deployment of solutions protecting networks, systems, and information assets for Fortune 500 companies and Government Agencies. Adam has worked on Secret level clearance projects for the United States Government and the United Kingdom. Deploying security solutions and network technologies while protecting key government data and assets. In addition, Adam is a respected blogger and thought leader on Enterprise Security.
Bio: Adam Fisher is an Enterprise Security Expert whose qualifications include a Bachelor of Science in Information Systems, Master of Business in Information Technology Management, and maintains a number of certifications, CISSP, CCSP, AWS Security Associate, Azure MCP. Adam has a detailed knowledge of Enterprise Security best practices and technologies and has been focused on the creation and deployment of solutions protecting networks, systems, and information assets for Fortune 500 companies and Government Agencies. Adam has worked on Secret level clearance projects for the United States Government and the United Kingdom. Deploying security solutions and network technologies while protecting key government data and assets. In addition, Adam is a respected blogger and thought leader on Enterprise Security.
1:03:24
BOLA, IDOR, MA, BFLA. Welcome to the OWASP API Top 10!
0:29:43
BSidesSLC 2020 - Adam Fisher - BOLA, IDOR, MA, BFLA. Welcome to the OWASP API Top 10!
0:08:06
Broken Object Level Authorization (BOLA) Explained
0:05:53
What is a BOLA Vulnerability? Hacking APIs Part 1
0:04:29
How to Test BFLA Using Akto | Manual | Automation |
0:00:58
Day 19: Broken Object Level Authorization (BOLA) | #CybersecurityAwarenessMonth 2023
0:05:49
IDOR Attack | Demo
0:13:15
IDOR hands-on tutorial with multiple techniques
0:05:37
BFLA API Penetration Testing Tutorial / CRAPI Walkthrough / How 2 Hack / How 2 Hack
0:38:14
API Security & the OWASP API Top 10 (#1 - BOLA/IDOR) - Part 1 of 4
0:44:03
OWASP API Security Series - Virtually Testing
0:06:01
“Anatomy of an API Attack: Broken Object Level Authorization”
0:07:53
Introduction to API Testing for Broken Object Level Authorization
0:34:29
IDOR - what, where and how? - Vatika Mittal
0:20:51
Let's Talk API Security: Broken Object Level Access Control (BOLA)
![[Segurança] IDOR o](https://i.ytimg.com/vi/CKMyNSCMRiU/hqdefault.jpg)
0:20:08
[Segurança] IDOR o que é como se proteger 🔒
0:04:36
API1:2019 Broken Object Level Authorization | Practical Lab | 2022 | Kontra | ApplicationSecurity.io
0:17:43
IDORs/BOLA - Jr. Penetration Tester [Learning Path]
0:07:09
Broken Object Level Authorization | Excessive Data Exposure | crAPI
0:04:20
API OWASP Top 10 Excessive Data Exposure
0:24:37
Talk 06 - Ozgur Alp - A Less Known Attack Vector, Second Order IDOR Attacks
0:36:20
OWASP API Security Series - Part 2
0:34:47
AppSec Drops #006: Shift left ou right? Precisamos de Segurança por design
0:26:52
c{api}tal - Exploit OWASP API's top 10 vulnerabilities (BlackHat EU 2022 - Arsenal)
Комментарии