Chapter 8: Assessing AWS API Gateway
AWS API Gateway acts as a gateway to applications that can host various types of data. The data they host varies; however, what does not is the fact the some of the data may be considered attractive to unauthorized personnel – such as the locations of S3 buckets or an overly permissive header. This chapter will discuss what AWS API Gateway is, and how you can learn to inspect API calls and manipulate API calls with open source tools.
Understanding how AWS APIs work will allow us to grow our mindset outside of the Linux Terminal and into the browser and understand the basics of web services and how to interact with them. While going through this chapter, remember that quite a few of the techniques in it can also assess all web applications within AWS. This chapter aims to have you obtain a thorough understanding of AWS APIs and how to evaluate web applications by manipulating API calls.
In this chapter, we'll cover the following...
