دوره TCM Security – Practical API Hacking

Practical API Hacking provides you with everything you need to start hacking APIs. This course was designed for beginners and those familiar with web application hacking but want to expand their skill set.

The course covers industry-standard tools such as Burp Suite and Postman, and how to find and exploit vulnerabilities common to applications powered by APIs. Throughout the course there are demonstration labs to help you understand the theory, and challenges to make sure you get hands-on experience too.

Syllabus

  1. Welcome to the Course!
  2. Introduction
  3. Lab Setup
  4. Enumerating APIs
  5. Attacking Authorization
  6. Attacking Authentication
  7. Injection
  8. Mid-course Capstone
  9. Mass Assignment
  10. Excessive Data Exposure
  11. SSRF – Server-side Request Forgery
  12. Chaining Vulnerabilities
  13. Final Capstone

TCM Security – Practical API Hacking