New
Arrivals/Restock
Hacking APIs: Breaking Web Application Programming Interfaces
4.1 (124 items)
Limited Time SaleUntil the end
04
33
46
$27.50 cheaper than the new price!!
Free shipping for purchases over $99 ( Details )
Free cash-on-delivery fees for purchases over $99
Free cash-on-delivery fees for purchases over $99
See all stores
Please note that the sales price and tax displayed may differ between online and in-store. Also, the product may be out of stock in-store.
New $55.00
Product details
| Management number | 205359700 | Release Date | 2025/11/09 | List Price | $27.50 | Model Number | 205359700 | ||
|---|---|---|---|---|---|---|---|---|---|
| Category | |||||||||
Hacking APIs is a crash course in web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure.Hacking APIs is a crash course on web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. You’ll learn how REST and GraphQL APIs work in the wild and set up a streamlined API testing lab with Burp Suite and Postman. Then you’ll master tools useful for reconnaissance, endpoint analysis, and fuzzing, such as Kiterunner and OWASP Amass. Next, you’ll learn to perform common attacks, like those targeting an API’s authentication mechanisms and the injection vulnerabilities commonly found in web applications. You’ll also learn techniques for bypassing protections against these attacks. In the book’s nine guided labs, which target intentionally vulnerable APIs, you’ll practice:Enumerating APIs users and endpoints using fuzzing techniquesUsing Postman to discover an excessive data exposure vulnerabilityPerforming a JSON Web Token attack against an API authentication processCombining multiple API attack techniques to perform a NoSQL injectionAttacking a GraphQL API to uncover a broken object level authorization vulnerabilityBy the end of the book, you’ll be prepared to uncover those high-payout API bugs other hackers aren’t finding and improve the security of applications on the web. Enumerating APIs users and endpoints using fuzzing techniques Enumerating APIs users and endpoints using fuzzing techniques Using Postman to discover an excessive data exposure vulnerability Using Postman to discover an excessive data exposure vulnerability Performing a JSON Web Token attack against an API authentication process Performing a JSON Web Token attack against an API authentication process Combining multiple API attack techniques to perform a NoSQL injection Combining multiple API attack techniques to perform a NoSQL injection Attacking a GraphQL API to uncover a broken object level authorization vulnerability Attacking a GraphQL API to uncover a broken object level authorization vulnerability
Handwoven Rugs
Tech for Work
Correction of product information
If you notice any omissions or errors in the product information on this page, please use the correction request form below.
Correction Request Form