Mr.Trunk · @mrtrunk
12 followers · 19622 posts · Server dromedary.seedoubleyou.me
Stephen Foskett · @sfoskett
936 followers · 2091 posts · Server techfieldday.net

: The article showcases Noname Security's presentations on API security during Security Field Day 9 and highlights the positive feedback received from delegates, emphasizing their comprehensive solutions for API vulnerabilities.
nonamesecurity.com/blog/securi
@NonameSecurity

#SymLink #nonamesecurity #securityfieldday9 #apisecurity #securitysolutions #xfd9

Last updated 1 year ago

App Sec Village · @AppSecVillage
10 followers · 2 posts · Server defcon.social

It takes a village to run a village. We are looking for volunteers to help us bring AppSec Village at DEF CON 31 to life.

Learn more appsecvillage.com/volunteer


#dc31 #defcon #defcon31 #appsecvolunteers #appsec #applicationsecurity #appsecurity #apisecurity

Last updated 1 year ago

VentureBeat :press: · @VentureBeat
71 followers · 55 posts · Server press.coop

A report released by Data Theorem and ESG finds that 92% of organizations experienced an incident in 2022. venturebeat.com/security/repor

#apisecurity #press

Last updated 2 years ago

Eden · @Mrs_Skelli
4 followers · 2 posts · Server defcon.social

ICYMI Our @defcon is now open at the @AppSecVillage!! buff.ly/3KriXI6 We can't wait to see your ideas for workshops, panels, hands-on activities, etc by May 14.

#callforpapers #callforspeakers #cfp #cfs #dc31 #defcon #defcon31 #appsec #apisecurity

Last updated 2 years ago

Anonymous :anarchism: 🏴 · @YourAnonRiots
5375 followers · 31975 posts · Server mstdn.social

Broken Object-Level Authorization: The hidden enemy of API security!

Learn how to protect your data from BOLA vulnerabilities the consequences and solutions in this latest article: cybersecurity.att.com/blogs/se

#CyberSecurity #owasp #apisecurity

Last updated 2 years ago

The Hacker News · @hackernews_bot
2228 followers · 1211 posts · Server social.platypush.tech
Dana Epp :donor: :verified: · @danaepp
296 followers · 297 posts · Server infosec.exchange

Check out this article to find out how offensive AI may affect API hacking, and what you can do about it.

danaepp.com/is-offensive-ai-go

#apihacking #apisecurity #ai

Last updated 2 years ago

Neil Madden · @neilmadden
205 followers · 193 posts · Server infosec.exchange

I hadn’t realised this interview I did with Coding over Cocktails has made its way onto YouTube: youtube.com/watch?v=wC1g9gjbtk

#apisecurity #podcast #interview

Last updated 2 years ago

Bobur · @bobur
0 followers · 5 posts · Server mastodon.world

In a πƒπžπ―π’πžπœπŽπ©π¬ environment, π€ππˆ π†πšπ­πžπ°πšπ² is a critical component that helps to achieve the core principles of DevSecOps, which are collaboration, automation, and security. In this article, we will walk you through 𝐭𝐑𝐞 6 𝐫𝐞𝐚𝐬𝐨𝐧𝐬 𝐰𝐑𝐲 π€ππˆ π†πšπ­πžπ°πšπ² 𝐒𝐬 𝐒𝐦𝐩𝐨𝐫𝐭𝐚𝐧𝐭 in building APIs with the DevSecOps approach.

πŸ‘‰api7.ai/blog/guide-to-devsecop

#devsecops #APIGateway #apisecurity #automation

Last updated 2 years ago

Dana Epp :donor: :verified: · @danaepp
290 followers · 296 posts · Server infosec.exchange

Changes are coming to the OWASP API Security Top 10. Check out this article to find out what might affect you and your API security testing.

danaepp.com/owasp-api-security

#owasp #apisecurity #apitesting

Last updated 2 years ago

Dana Epp :donor: :verified: · @danaepp
288 followers · 294 posts · Server infosec.exchange

Let me show you how to build an API security testing checklist that leverages common attack pattern enumeration in a way so you can start thinking about how to approach a target, how to attack it, and how to leave little to no trace.

danaepp.com/an-api-security-te

#apisecurity #apihacking #apitesting

Last updated 2 years ago

Tony Morbin · @tonymorbin
25 followers · 322 posts · Server infosec.exchange

ISMG Editors' panel: Zero trust: how defenders secure data & applications in the wake of MFA bypass attacks bankinfosecurity.com/ismg-edit Zero Trust's John Kindervag on ChatGPT, API Security, MFA Bypass, +Tom Field, Mathew Schwartz and Anna Delaney

#zerotrust #chatgpt #apisecurity

Last updated 2 years ago

:mastodon: Mike Amundsen · @mamund
1553 followers · 1165 posts · Server mastodon.social

Agent-Based vs. Agentless Security: Which Approach Is Better?

thenewstack.io/agent-based-vs-

"A look at two strategies for deploying cloud security software along with tips on when each one does or doesn't make sense."

#api360 #apisecurity

Last updated 2 years ago

:mastodon: Mike Amundsen · @mamund
1547 followers · 1161 posts · Server mastodon.social

Time to hide your API

sdtimes.com/security/time-to-h

"According to the 2022 State of APIs report, 69% of developers said that they expect to use APIs more in 2023 while 25% said that they expect about the same. Only about 6% stated that they expect less or they didn't know."

#api360 #apisecurity

Last updated 2 years ago

Kong · @Kong
2 followers · 32 posts · Server mastodon.sdf.org

😈 attacks are on the rise.

Gartner reported API data breaches would be the most common attack vector in 2022, & the number of attacks is predicted 𝙩𝙀 𝙙𝙀π™ͺπ™—π™‘π™š by 2024.

So what can developers and businesses do to amp up ?

Learn:
- What is
- How , & policy lifecycles integrate to produce a secure service in production
- Why collaboration & API-Design First are essential
- How protect yourself against API abuse

ow.ly/eNtV50MZGc0

#cybersecurity #apisecurity #apisecops #api #microservice

Last updated 2 years ago

Dana Epp :donor: :verified: · @danaepp
286 followers · 295 posts · Server infosec.exchange

Testing APIs? You owe it to yourself to look at it through a security lens. Check out this article to find out why.

danaepp.com/analyzing-your-exi

#apitesting #apihacking #apisecurity

Last updated 2 years ago

Dana Epp :donor: :verified: · @danaepp
286 followers · 295 posts · Server infosec.exchange

Check out this post I wrote on how to hack your hardware to find the firmware and swipe the source code of APIs under security testing.

danaepp.com/exploiting-embedde

#apihacking #apisecurity #apitesting

Last updated 2 years ago

David Biesack · @DavidBiesack
62 followers · 83 posts · Server mastodon.social

The Project team announced the OWASP API Security Top 10 2023 release candidate is now available! github.com/OWASP/API-Security/

#owasp #apisecurity

Last updated 2 years ago

Indusface · @Indusface
0 followers · 30 posts · Server infosec.exchange

πŸ‘‰ Every API is different & comes with its own set of security challenges.

Here are the OWASP Top 10 API Security Threats that you can go through to understand the various types of threats & applying the right kind of security measures.

Read more: cybertrends-indusface.medium.c

#apiscanning #apptrana #indusface #owaspapi #apithreats #apivulnerability #apis #apisecurity

Last updated 2 years ago