Dana Epp :donor: :verified: · @danaepp
296 followers · 297 posts · Server infosec.exchangeCheck out this article to find out how offensive AI may affect API hacking, and what you can do about it.
https://danaepp.com/is-offensive-ai-going-to-be-a-problem-for-api-hackers
Dana Epp :donor: :verified: · @danaepp
288 followers · 294 posts · Server infosec.exchangeLet me show you how to build an API security testing checklist that leverages common attack pattern enumeration in a way so you can start thinking about how to approach a target, how to attack it, and how to leave little to no trace.
https://danaepp.com/an-api-security-testing-checklist-with-a-twist
#apisecurity #apihacking #apitesting
Dana Epp :donor: :verified: · @danaepp
286 followers · 295 posts · Server infosec.exchangeTesting APIs? You owe it to yourself to look at it through a security lens. Check out this article to find out why.
https://danaepp.com/analyzing-your-existing-api-testing-through-a-security-lens
#apitesting #apihacking #apisecurity
Dana Epp :donor: :verified: · @danaepp
286 followers · 295 posts · Server infosec.exchangeCheck out this post I wrote on how to hack your hardware to find the firmware and swipe the source code of APIs under security testing.
https://danaepp.com/exploiting-embedded-apis-by-dumping-firmware
#apihacking #apisecurity #apitesting
Chris P. · @b4ux1t3
101 followers · 524 posts · Server hachyderm.io
Going live to work on a QRZ.com API for #DotNet! A lovely intersection between #HamRadio and #LiveCoding! Come hang out on #twitch:
#Programming #CSharp #AmateurRadio #QRZ #ApiHacking #Hacking #StreamRaiders
#dotnet #hamradio #livecoding #twitch #programming #csharp #amateurradio #QRZ #apihacking #hacking #streamraiders
Chris P. · @b4ux1t3
99 followers · 509 posts · Server hachyderm.io
We're back online! I'm going to just copy-pasta my toot from earlier:
II'm working on something special tonight: a qrz.com API wrapper for #DotNet! This will be a nice little cross between #LiveCoding and #HamRadio.
Cone hang out over on #Twitch and watch me probably eat crow about #CouchBase!
#Programming #CSharp #AmateurRadio #QRZ #ApiHacking #Hacking #StreamRaiders
#dotnet #livecoding #hamradio #twitch #couchbase #programming #csharp #amateurradio #QRZ #apihacking #hacking #streamraiders
Chris P. · @b4ux1t3
92 followers · 496 posts · Server hachyderm.io
Aaaaaand, LIVE!
Let's build some #HamRadio software in #CSharp and #DotNet!
#AmateurRadio #LiveCoding #QRZ #ApiHacking #Hacking #Programming
#hamradio #csharp #dotnet #amateurradio #livecoding #QRZ #apihacking #hacking #programming
Chris P. · @b4ux1t3
92 followers · 494 posts · Server hachyderm.ioI'm going live tonight sometime around 8 PM eastern to work on something special: a qrz.com API wrapper for #DotNet! This will be a nice little cross between #LiveCoding and #HamRadio.
Cone hang out over on #Twitch and watch me probably eat crow about #CouchBase!
#Programming #CSharp #AmateurRadio #QRZ #ApiHacking #Hacking
#dotnet #livecoding #hamradio #twitch #couchbase #programming #csharp #amateurradio #QRZ #apihacking #hacking
Dana Epp :donor: :verified: · @danaepp
270 followers · 252 posts · Server infosec.exchange
Check out this article to understand why you should never blindly trust proof of concept (PoC) exploits shared on GitHub.
https://danaepp.com/why-you-should-never-trust-poc-exploits-on-github
Dana Epp :donor: :verified: · @danaepp
262 followers · 246 posts · Server infosec.exchange
Check out this article and get a step-by-step guide to writing custom BurpSuite extensions to help you with API pentesting.
https://danaepp.com/a-step-by-step-guide-to-writing-extensions-for-api-pentesting-in-burpsuite
#apihacking #apisecurity #apitesting
Dana Epp :donor: :verified: · @danaepp
258 followers · 235 posts · Server infosec.exchange
Ask yourself these five simple questions as you prepare for an API penetration testing engagement. It will surely make it more successful.
https://danaepp.com/5-simple-questions-to-make-your-api-pentest-more-successful
#apitesting #apihacking #apisecurity
tXambe · @tXambe
1 followers · 323 posts · Server mastodon.social
RT @3nc0d3dGuY@twitter.com
🎉I wrote another post on "How I fuzz and hack APIs?" where I have explained how I see an API and then how I starts to fuzz it for various bugs.
https://rashahacks.com/how-i-fuzz-and-hack-api/
Hashtags for reach
#bugbounty #bugbountytips #ethicalhacking #cybersecurity #cybersec #infosec #apihacking
🐦🔗: https://twitter.com/3nc0d3dGuY/status/1612008292938813447
#bugbounty #bugbountytips #ethicalhacking #cybersecurity #cybersec #infosec #apihacking
Dana Epp :donor: :verified: · @danaepp
256 followers · 233 posts · Server infosec.exchange
Let me show you a few online training resources that can help you practice and improve your API hacking tradecraft.
https://danaepp.com/3-training-resources-to-improve-your-api-hacking-tradecraft
#apihacking #apisecurity #apitesting
Dana Epp :donor: :verified: · @danaepp
256 followers · 233 posts · Server infosec.exchange
Let me tell you a story about the time I hacked into a .NET API through a bit of luck and reverse engineering.
#apisecurity #apihacking #apitesting
zerodayhacker · @zerodayhacker
1 followers · 1 posts · Server infosec.exchange
Install an Android emulator. Proxy into Burp. Catch the traffic. Hack APIs. Here's how I do it:
https://zerodayhacker.com/using-an-android-emulator-for-api-hacking/
#hacking #androidstudio #mobilehacking #apihacking #hackingapis
#hacking #androidstudio #mobilehacking #apihacking #hackingapis
zerodayhacker · @zerodayhacker
2 followers · 2 posts · Server infosec.exchangeInstall an Android emulator. Proxy into Burp. Catch the traffic. Hack APIs. Here's how I do it:
https://zerodayhacker.com/using-an-android-emulator-for-api-hacking/
#hacking #androidstudio #mobilehacking #apihacking #hackingapis
#hacking #androidstudio #mobilehacking #apihacking #hackingapis
null - Open Security Community · @null0x00
129 followers · 164 posts · Server ioc.exchange
RT @nullpune
null Pune Physical Meetup 🚀
📅Date & Time - 17th December 2022 | Starts 11.00 AM
📍Venue - Payatu, MG Road, Pune
🤙RSVP Link - https://null.community/events/859-pune-monthly-meet
See you all there!
cc: @alijujara7 @0xCardinal
#infosec #apihacking #cloudsecurity
Dana Epp :donor: :verified: · @danaepp
211 followers · 206 posts · Server infosec.exchangeCheck out how I extract API artifacts directly from a docker image and decompile them back to source code for vulnerability research.
https://danaepp.com/defeating-a-dockerized-api-to-get-access-to-source-code
#apihacking #apisecurity #apitesting
Dana Epp :donor: :verified: · @danaepp
206 followers · 205 posts · Server infosec.exchangeHow to extract artifacts from OpenAPI docs to help attack APIs:
https://danaepp.com/how-to-extract-artifacts-from-openapi-docs-to-help-attack-apis
Dana Epp :donor: :verified: · @danaepp
192 followers · 192 posts · Server infosec.exchange
Learn how to find exploitable vulnerabilities in your APIs using taint analysis…
https://danaepp.com/tracing-api-exploitability-through-code-review-and-taint-analysis
#apisecurity #apihacking #apitesting
#apisecurity #apihacking #apitesting