Hack Your API First
Web based APIs have grown enormously popular in recent years. This is in response to a couple of key changes in the industry: firstly, the enormous growth of mobile apps which frequently talk to back ends over the web. Secondly, the rapidly emerging 'Internet of Things' which promises to bring connectivity to common devices we use in our everyday lives. In the rush to push these products to market, developers are often taking shortcuts on security and leaving online services vulnerable to attack. The risks are not as obvious as they may be in traditional browser based web apps, but they're extremely prevalent and attackers know how to easily identify them. This course teaches you how to go on the offense and hack your own APIs before online attackers do.
Table of contents:
Discovering Device Communication With APIs37m 37s
Leaky APIs and Hidden APIs41m 49s
API Manipulation and Parameter Tampering32m 31s
API Authentication and Authorization Vulnerabilities50m 40s
Working With SSL Encrypted API Traffic54m 40s