Category: API

Hacking APIs: Understanding, Challenges, and Best Practices

I was doing a talk about Hacking APIs @ Plattform Summit 2025. Here is the presentation and all the commands. Applications / Toolshttps://www.apisec.ai/https://cloud.apisecapps.com/https://www.usebruno.com/ Educationhttps://www.home.apimasters.io/learnhttps://www.apisecuniversity.com/ crAPIhttps://github.com/OWASP/crAPI/bhttp://crapi.apisec.ai/loginhttp://crapi2.apisec.ai/login Information:https://danaepp.com/https://nordicapis.com/api Installation Install kali BurpSuitesudo apt-get install burpsuite Brunohttps://www.usebruno.com/downloadssudo apt-get install ./bruno_2.11.0_amd64_linux.deb FireFoxFoxyProxy Burpsuite Certifcatehttp://burpsuite Mitmproxy Certificatehttp://mitm.it Postmansudo wget https://dl.pstmn.io/download/latest/linux64 -O postman-linux-x64.tar.gz && sudo tar -xvzf postman-linux-x64.tar.gz -C /opt &&... Continue Reading →

0

What do I think of the Designing and Implementing API Systems course from apimasters with Mike Amundsen

In today’s interconnected digital world, APIs those quiet enablers of data exchange power everything from your favorite apps to complex enterprise systems. Yet for many professionals APIs still feel like a black box technical, mysterious and not something they need to “understand” to do their job. That’s where this API Learning Path with Mike Amundsen... Continue Reading →

0

What do I think of the API Product Management Masterclass from APIsec University with Erik Wilde, Mike Amundsen, Audrey Kolski, Jeremy Glassenberg, Ilona Koren-Deutsch and Gabrielle Botbol

APIs do a lot more than just move data they’re a big part of how modern products work. This free learning path is a solid intro to how APIs are planned, designed, documented and kept secure. It is made for people who are new to API product roles or just want to better understand how... Continue Reading →

0

Securing LLM & NLP APIs: Lessons from APIuniversity

Securing LLM & NLP APIs: Lessons from APIuniversity As the use of large language models (LLMs) and generative AI continues to grow, so does the importance of understanding how to secure these technologies effectively. Recently, I completed the Securing LLM & NLP APIs course from APIuniversity, an essential training that arms developers, data scientists, and... Continue Reading →

0

What do I think of Practical Bug Bounty course from TCM Security with Heath Adam, Alex Olsen, and Jonah Burgess from Intigriti

The Practical Bug Bounty course by TCM Security, led by Heath Adams, Alex Olsen, and Jonah Burgess from Intigriti, is a thorough exploration of hacking and web application security. Alex's extensive knowledge and Heath's significant community contributions are evident throughout the course. Despite its focus on bug bounty hunting, the course offers a wide range... Continue Reading →

0

What do I think of Practical Web Hacking course from TCM Security with Alex Olsen

Web security is an ever-evolving field, requiring continuous learning and adaptation. TCM's course "Practical Web Hacking," led by the exceptional instructor Alex Olsen, is designed to equip cybersecurity enthusiasts and professionals with hands-on knowledge and skills to tackle real-world web security challenges. This blog post delves into what this course offers, who should consider enrolling,... Continue Reading →

0

What do I think of API Authentication course from APIsec University with Jacob Ideskog from Curity

In the ever-evolving landscape of digital interactions, ensuring secure communication between clients and servers is paramount. API authentication and authorization are fundamental concepts that protect sensitive data and ensure that only authorized users can access specific resources. In this blog post, we will explore key aspects of API authentication and authorization, drawing insights from the... Continue Reading →

0

Blog at WordPress.com.

Up ↑