← RETURN TO BASE
GRC & Strategy

API Security Testing

Securing the connective tissue of modern apps.

INCLUDED IN:
DevSecOps & Cloud SecuritySecurity Automation & Tool Development

Operational Phase

01

REST vs GraphQL

Understanding API architectures.

02

BOLA/IDOR

Broken Object Level Authorization (The #1 API flaw).

03

Rate Limiting

Testing for DoS and brute force vulnerabilities.

04

JWT Attacks

Forging and cracking JSON Web Tokens.