{"product_id":"1718502443-hacking_a_p_is_breaking_web_application_programming_interfaces","title":"Hacking APIs: Breaking Web Application Programming Interfaces","description":"\n\u003cp\u003eHacking APIs is a crash course in web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure.\\\u003cbr\u003eHacking APIs is a crash course on web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure.\\\u003cbr\u003eYouâll learn how REST and GraphQL APIs work in the wild and set up a streamlined API testing lab with Burp Suite and Postman. Then youâll master tools useful for reconnaissance, endpoint analysis, and fuzzing, such as Kiterunner and OWASP Amass. Next, youâll learn to perform common attacks, like those targeting an APIâs authentication mechanisms and the injection vulnerabilities commonly found in web applications. Youâll also learn techniques for bypassing protections against these attacks.\\\u003cbr\u003eIn the bookâs nine guided labs, which target intentionally vulnerable APIs, youâll practice:\u003cbr\u003eEnumerating APIs users and endpoints using fuzzing techniques Using Postman to discover an excessive data exposure vulnerability Performing a JSON Web Token attack against an API authentication process Combining multiple API attack techniques to perform a NoSQL injection Attacking a GraphQL API to uncover a broken object level authorization vulnerability\u003cbr\u003eBy the end of the book, youâll be prepared to uncover those high-payout API bugs other hackers arenât finding and improve the security of applications on the web.\u003c\/p\u003e\u003cbr\u003e\u003cp\u003eCategories:\u003c\/p\u003e\u003cul class=\"category-tree\"\u003e\n\u003cli\u003eComputers \u0026amp; Technology\u003cul class=\"category-tree\"\u003e\n\u003cli\u003eProgramming\u003cul class=\"category-tree\"\u003e\n\u003cli\u003eSoftware Design, Testing \u0026amp; Engineering\u003cul class=\"category-tree\"\u003e\u003cli class=\"category-tree\"\u003eTesting\u003c\/li\u003e\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\n","brand":"No Starch Press","offers":[{"title":"Used - Good","offer_id":47560087142590,"sku":"1718502443-4","price":36.24,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0640\/9689\/5166\/files\/816PGaBqiyL.jpg?v=1779456067","url":"https:\/\/shop.sustainablebooks.com\/products\/1718502443-hacking_a_p_is_breaking_web_application_programming_interfaces","provider":"Sustainable Books","version":"1.0","type":"link"}