Pentesting APIs. A practical guide to discovering, fingerprinting, and exploiting APIs - Helion
Tytuł oryginału: Pentesting APIs. A practical guide to discovering, fingerprinting, and exploiting APIs
ISBN: 9781837639731
stron: 290, Format: ebook
Data wydania: 2024-08-30
Księgarnia: Helion
Cena książki: 116,10 zł (poprzednio: 129,00 zł)
Oszczędzasz: 10% (-12,90 zł)
Understanding API security is crucial as APIs form the backbone of modern interconnected applications, making them prime targets for cyberattacks. Drawing on nearly 30 years of cybersecurity experience and an extensive background in network security and forensic analysis, this book provides the knowledge and tools to strengthen your API security practices and protect against cyber threats comprehensively.
This book begins by establishing a foundational understanding of APIs, particularly focusing on REST and GraphQL, emphasizing their critical role and potential security vulnerabilities. It guides you through setting up a penetration testing environment to ensure the practical application of concepts. You’ll learn reconnaissance techniques, information-gathering strategies, and the discovery of API vulnerabilities. Authentication and authorization testing are thoroughly explored, covering mechanisms, weaknesses, and methods to bypass security controls. By comprehensively addressing these aspects, the book equips you to understand, identify, and mitigate risks, strengthening API security and effectively minimizing potential attack surfaces.
By the end of this book, you’ll have developed practical skills to identify, exploit, and secure APIs against various vulnerabilities and attacks.
Osoby które kupowały "Pentesting APIs. A practical guide to discovering, fingerprinting, and exploiting APIs", wybierały także:
- OSINT w praktyce. Kurs video. Dark web, OPSEC i wycieki danych 97,32 zł, (39,90 zł -59%)
- Ryzyko w cyberbezpiecze 87,00 zł, (43,50 zł -50%)
- Jak rabuj 58,98 zł, (29,49 zł -50%)
- Bezpiecze 69,00 zł, (34,50 zł -50%)
- Cyberbezpiecze 69,00 zł, (34,50 zł -50%)
Spis treści
Pentesting APIs. A practical guide to discovering, fingerprinting, and exploiting APIs eBook -- spis treści
- 1. Understanding APIs and their Security Landscape
- 2. Setting Up the Penetration Testing Environment
- 3. API Reconnaissance and Information Gathering
- 4. Authentication and Authorization Testing
- 5. Injection Attacks and Validation Testing
- 6. Error Handling and Exception Testing
- 7. Denial of Service and Rate -Limiting Testing
- 8. Data Exposure and Sensitive Information Leakage
- 9. API Abuse and Business Logic Testing
- 10. Secure Coding Practices for APIs