Free API Hacking course!

David, you're a blessing for guys like myself who wish to learn Cyber Security. Thank you so much for always sharing free courses and producing great educational content on YouTube.

fRaNKiEbNEz.

David, YOUR CHANNEL has helped me rediscover my childhood love for breaking technical things 😏 You and ppl like Corey have made hacking accessible again! Can’t thank you both enough ❤

jlastname

As an API developer of many years it’s interesting to see how the tools we use during development are the same tools that can be used for exploitation.

I was also able to identify a couple of vulnerabilities in the APIs that I’ve worked on, from this video, and am working on patching them up.

Very nice video David!

bc

David, you and Corey are both my heroes. You two are the only ones (that I know of at least) offering comprehensive courses for free. This really helps out people like myself or dad who doesn't have much extra funds at the moment but still wants to better the lives of my son and I. I am taking my ejpt soon but I just stumbled across API hacking and I can't wait to get Corey's book and course. Thanks again to you both.

wambamcamcam

David, thanks for introducing Corey and his course. I have completed it starting from 0.000 experience with API hacking, I have learned a lot from that course. Bless you

amirzakrishan

Even though as a hobbyist in cybersecurity and a full stack developer, I find this video very essential for my job.

ambuj.k

David we all appreciate you and what you doing!
Not so many people use their platforms to help others like this...
You literally have been mentor to hundreds of thousands of people, including myself.
I appreciate you so much.

hm-jrok

You David are a legend I just enrolled on this course all my life I was mad about computers, IT and so on started creating small silly programs on the old ZXSpectrum 48k but then made bad choices in life blah blah and all those dreams went out the window, now I am 50 and thanks to you I can find this gems to help me on my old dreams.
And thanks to Corey for providing this course for free.
Can't thank enough you both

goangoan

// MENU //
00:00 - Why talk about pentesting at all?
00:21 - Welcome//Corey
00:48 - What is an API and Why Care?
01:52 - Free API Hacking Course!
02:11 - Overview//Course
02:28 - Do I Need the Book to do the Course?
02:39 - Pre-reqs for Course
03:07 - Cert//When?
03:22 - Hacking APIs//Origin Story
05:34 - The Start//USPS Data Leak
07:31 - OWASP Top 10 Explained
07:49 - API1//Broken Object Level Authorization
08:46 - Testing for BOLA
09:59 - API2//Broken User Authentication
10:35 - Leaked API Keys on GitHub?
10:59 - API3//Excessive Data Exposure
12:05 - API9//Improper Asset Management
13:53 - The World is Running on APIs
14:53 - Who is this Book For?
16:19 - Set Up Hacking Lab
17:47 - You Just Need a Laptop to Start Hacking!
17:52 - Free API Hacking Tools
20:14 - What is Kiterunner
20:47 - Gobuster vs Kiterunner
21:51 - Free Wordlists!
22:05 - What is fuzzing and free fuzzing tool
23:17 - More Tools?
23:47 - How To Find APIs
25:02 - Using nmap to find APIs?
26:09 - Hacking APIs as your start in hacking
28:09 - Difference//REST//GraphQL
29:07 - Learn REST or GraphQL?
31:07 - Take University a Course?
31:44 - Hacking Certifications//Worth It?
33:42 - Being Hacked//How Corey Started
36:31 - Corey's OSEP Experience
38:09 - Hacking APIs As An Alternative Path
38:41 - Resources to Start With
39:26 - Ten Years of Experience?
39:52 - Huge Demand for Hacking APIs
40:25 - The Course is Completely Free
40:47- Breaking Barriers!
41:37 - Thank You & Final Words

// Free API hacking course //

// Defcon Workshop notes //

// Books //

// YouTube channels mentioned //

// Corey SOCIAL //

// David SOCIAL //

// MY STUFF //

// SPONSORS //

davidbombal

This channel is pure gold, I'm so glad people like you exist, David.
P.S: I hope you can collab with Chris Greer more haha ☺️, that dude rocks!

Lucas-mdgg

Just opening up access to hacking APIs about to start diving into it. This video has been extremely helpful as I'm currently in a university project where we are pentesting a web application using APIs. Many thanks for all you are doing for us starting to get into the cyber field

Nzxtreme

thank you very much Mr. Bombal, after obtaining my baccalaureate I love technology, but not having enough money to enroll in a cybersecurity training center, I started to do research and since I came across your channel I learned a lot. Thank you very much once again.

komenanfrancois

Finally subscribed so I won’t miss any future vids. These vids inspire me again once again. Thank you both.

healthvative

Was hoping this interview was coming, been following corey since I heard about his book. Glad he's getting the recognition he deserves.

isaiahkaiver

thank you David. After your interview with Alessa Knight I really interested in APIs hacking. Then this course made my day. Thank you for everything you did for us.

delibedriful

Enrolled before looking at the video. I know David always gives you good content. Thanks a lot for all what you are doing for the community

georges-michaelmathieu

What a great time to be alive.. and to see this kind of content (the editor's humor has a nice touch haha). I'm devouring all in your channel lately, and I decided to start my career with that. Thank you Sir Bombal, the master I was looking for :)

fun_iqp

That was gold, thanks David for inviting Corey and him writing this book and sharing it resources

ukqkzok

Right on my brothers !!
Appreciate the coverage as always David.
Count me in for sure b's Corey, good on you bloke, thanks for all your time and efforts involved in both self learning then helping via books and Webinars, videos etc.
>8-D

BDBee

Thanks as always to David for creating video's on hot new trends and keeping us updated. And Thank you to Corey for helping the community and break the barrier! Love from India.

arijitdas