In fact, its very common to see unauthenticated APIs. From incidents like mHealth APPs, Panera bread, Fiserv, LifeLock, Kay Jewelers and several others API security had remained a crucial factor. T ...
Continue ReadingSeptember 17, 2021
I've been thinking about this for a while, but I finally got around to making it last week. It was inspired by the "What Happened" feature on Facebook, which shows you all of the posts and photos that ...
Continue ReadingSeptember 17, 2021
You can use the same tools and techniques for both, but you should also include negative tests in your test setup. OWASP Top Ten Security Issues For APIs Let's now look at each of the top ten OWASP ...
Continue ReadingSeptember 17, 2021
API Security Testing is a Black Box Problem The second problem with SAST is that it only provides information about the vulnerabilities in an application, and does not provide any insight into ho ...
Continue ReadingSeptember 17, 2021
I've been watching The Walking Dead since season 2. It was my favorite show at the time and remains one of my favorites today. However, I feel like it's finally reached its peak in terms of quality an ...
Continue ReadingSeptember 17, 2021
Salt secures your API-driven data and services by protecting them at every layer: from network to application, in transit and at rest. Our patented approach delivers unmatched security visibility, con ...
Continue ReadingSeptember 17, 2021
API Security testing is different from web app security testing The OWASP Top 10 list for APIs includes the following: Cross Site Request Forgery (CSRF), Broken Authentication and Session Managemen ...
Continue ReadingSeptember 17, 2021
Several hints can be found when enumerating the services, the idea is to understand how a vulnerable API can be exploited, you can contact me on twitter @sidchn_20 for giving any feedback regarding t ...
Continue ReadingSeptember 17, 2021
Back to Main