You're reading from API Security for White Hat Hackers Uncover offensive defense strategies and get up to speed with secure API implementation

Product type Paperback

Published in Jun 2024

Publisher Packt

ISBN-13 9781800560802

Length 418 pages

Edition 1st Edition

Concepts

Ethical Hacking

Author (1):

Confidence Staveley

View More author details

Table of Contents (20) Chapters

Preface

1. Part 1: Understanding API Security Fundamentals

2. Chapter 1: Introduction to API Architecture and Security FREE CHAPTER

3. Chapter 2: The Evolving API Threat Landscape and Security Considerations

4. Chapter 3: OWASP API Security Top 10 Explained

5. Part 2: Offensive API Hacking

6. Chapter 4: API Attack Strategies and Tactics

7. Chapter 5: Exploiting API Vulnerabilities

8. Chapter 6: Bypassing API Authentication and Authorization Controls

9. Chapter 7: Attacking API Input Validation and Encryption Techniques

10. Part 3: Advanced Techniques for API Security Testing and Exploitation

11. Chapter 8: API Vulnerability Assessment and Penetration Testing

12. Chapter 9: Advanced API Testing: Approaches, Tools, and Frameworks

13. Chapter 10: Using Evasion Techniques

14. Part 4: API Security for Technical Management Professionals

15. Chapter 11: Best Practices for Secure API Design and Implementation

16. Chapter 12: Challenges and Considerations for API Security in Large Enterprises

17. Chapter 13: Implementing Effective API Governance and Risk Management Initiatives

18. Index

Why subscribe?

19. Other Books You May Enjoy

Lesson from a real-life API data breach

To further our understanding of the API security risks, we must learn from real-life data breaches that have occurred in the past. This section presents a few examples.

Uber data breach (2016)

The Uber data breach of 2016 serves as an alarming example of how lapses in API security can lead to unauthorized access and leakage of sensitive personal information. In this instance, the attackers compromised the personal information of approximately 57 million Uber users and drivers. The following are the critical aspects of API security that were highlighted by this incident:

Improper API access management: The breach was instigated by attackers obtaining API credentials from Uber’s private GitHub repository. They subsequently accessed Uber’s backend systems and extracted user data, underscoring the necessity to secure API access and manage credentials meticulously.
Third-party integration vulnerabilities: The incident...

The rest of the chapter is locked

You're reading from API Security for White Hat Hackers Uncover offensive defense strategies and get up to speed with secure API implementation

Table of Contents (20) Chapters

Lesson from a real-life API data breach

Uber data breach (2016)

Authors (1)

Personalised recommendations for you

You're reading from API Security for White Hat Hackers Uncover offensive defense strategies and get up to speed with secure API implementation

Table of Contents (20) Chapters

Lesson from a real-life API data breach

Uber data breach (2016)

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you