OWASP crAPI to understand API security risks & Enhancing Quality and Security during API Lifecycle

preview_player
Показать описание
Using the OWASP crAPI to understand the most critical API security risks (by Filip Verloy - Field CTO EMEA, Noname Security):
Considering how integral APIs have become across the private and public sectors, they also present a rapidly expanding attack surface. And the reality is, they are often misunderstood and frequently overlooked by application security managers and software developers.
Exposed, faulty, broken, or hacked APIs are at the heart of many major data breaches. These attacks expose sensitive financial, medical, and personal data for public consumption, leaving organizations on the hook.
By using the OWASP completely ridiculous API (crAPI) we will help you to understand the most critical API security risks. We'll demonstrate how to think like an attacker and breach the crAPI application by using standard tools like Postman. Once we understand the vulnerabilities in the platform we'll demonstrate how to detect and remediate these issues.

Enhancing Quality and Security throughout the API Lifecycle (by Jiri De Jagere - Senior Director Product Strategy, Software AG):
An opinionated view on the API ecosystem
  1. API Community Belgium
Рекомендации по теме
OWASP crAPI to 0:59:31

OWASP crAPI to understand API security risks & Enhancing Quality and Security during API Lifecyc...

Understanding The Fundamentals 0:09:41

Understanding The Fundamentals of API Security | How APIs are Attacked and How to Secure Them

What is a 0:05:53

What is a BOLA Vulnerability? Hacking APIs Part 1

How to Install 0:03:27

How to Install crAPI in Kali Linux | OWASP | API Testing |

Discovering API and 0:14:42

Discovering API and Analyzing Endpoints Using Postman and Browser | crAPI |

Excessive Data Exposure 0:05:48

Excessive Data Exposure | API Pentesting Tutorial | How To Hack | CRAPI Walkthrough API Pentesting

API1 - Broken 0:16:52

API1 - Broken Object Level Authorization | IDOR | crAPI

BOLA Vulnerability crAPI 0:06:49

BOLA Vulnerability crAPI application | API Pentesting Tutorial | CRAPI Walkthrough | Cyber Security

BFLA API Penetration 0:05:37

BFLA API Penetration Testing Tutorial / CRAPI Walkthrough / How 2 Hack / How 2 Hack

Free Hacking API 0:53:46

Free Hacking API courses (And how to use AI to help you hack)

OWASP API Security 0:00:22

OWASP API Security Top 10

Exploring OWASP Top 1:33:25

Exploring OWASP Top 10: Securing Your APIs With Postman

SSRF Vulerability API 0:06:20

SSRF Vulerability API Pentesting CrAPI Pentesting OWASP TOP 10 vulnerability | Cyber security

Broken Object Level 0:07:09

Broken Object Level Authorization | Excessive Data Exposure | crAPI

API's In The 0:14:40

API's In The Morning (EP. 3): OWASP API Security TOP10 (Part 1)

BOLA, IDOR, MA, 1:03:24

BOLA, IDOR, MA, BFLA. Welcome to the OWASP API Top 10!

OWASP API Security 0:57:40

OWASP API Security Top 10 Challenges - Episode 1

Intro To API 0:09:31

Intro To API Hacking Series

Mass Assignment Vulnerability 0:05:07

Mass Assignment Vulnerability API Pentesting Tutorial Crapi Application API Pentesting | HOW TO HACK

REST API and 0:09:17

REST API and OpenAPI: It’s Not an Either/Or Question

API Bug Bounty 0:05:33

API Bug Bounty Tutorial | API Penetration Testing | API Vulnerability | Critical API Security Risks

How to Install 0:09:35

How to Install crAPI in Kali Linux | OWASP | API Testing | Hindi

Business Logical vulnerability 0:05:17

Business Logical vulnerability | API Pentesting Tutorials | HOW TO HACK | Crapi Walkthrough |

What is Broken 0:08:14

What is Broken User Auth? Hacking APIs Part 2

Комментарии
Автор

Hi Cloud you share where I can download the postman collection ? I would like to implement this attack on my lab env.

viaionary
Автор

Hi expoert,
could you share where I can download the postman collection ? I would like to implement this attack on my lab env.

viaionary