Category - API Security Blog

Im not sure what to make of this.

It could be a coincidence, or it could be that the novelty and diversity factors are actually more important than we thought https://t.co/vJKgiWGl5e ...

September 30, 2021

If you dont have a logging and monitoring system in place, attackers can take advantage of your lack of insight into the malicious activities happening on your network

If you dont have a logging and monitoring system in place, attackers can take advantage of your lack of insight into the malicious activities happening on your network https://t.co/2rTCe213cC ...

September 30, 2021

I’m a newbie, I want to learn how to use the terminal.

What are some good resources https://t.co/fqALk9mws2 ...

September 30, 2021

Im not sure if I like this book or not.

It was a good story, but it wasnt great https://t.co/la4SqJmYUu ...

September 30, 2021

Don’t use the “report” feature on Twitter.

It's broken, and it won't help you anyway https://t.co/BVm0IhgE03 ...

September 30, 2021

Im a software engineer at Google.

I work on the Chrome team, and my main focus is making web apps run faster. I also write about programming on this blog. I graduated from UC Berkeley in 2013 with a degree in Computer Science and Mat ...

September 30, 2021

Identify the API’s entry points, which are the locations where an attacker can access the application.

These include: 1. The client-side of a web application (such as JavaScript) that interacts with an API via HTTP requests and responses; 2. A mobile app that communicates with an API using HTTPS; 3. A ...

September 30, 2021

Elastic Stack is a group of open source products that use APIs for critical data aggregation, search, and analytics capabilities.

Elastic Stack provides the ability to query data across multiple sources (e.g., databases) using an API-based front end. This design flaw can result in DoS attacks and cascading API threats that expos ...

September 30, 2021