- Home
- Shop Books
- New Releases
- Best Sellers
- Adult Fiction
- Adult Non Fiction
- Accounting, Economics & Finance
- Agriculture & Farming
- Animals & Wildlife
- Antiques & Collectables
- Architecture
- Art & Design / Artists & Art Works
- Autobio, Biographies & Memoirs
- Boating / Marine
- Building, Construction, DIY
- Business & Management
- Computer & Information Software
- Cooking, Food & Beverages
- Crafts, Hobbies, Games & Quizzes
- Dictionaries & Thesauri
- Education / Educational Teaching
- Educational / Learning Readers
- English Language Teaching - ELT
- Enviro, Conservation & Nature
- Family & Relationships
- Fashion & Lifestyle
- Finance & Investment
- Gardening
- General Non-Fiction
- Geography
- Graphic Novels
- Health & Fitness
- History
- Humour
- Interior Design
- LGBTQIA+
- Languages
- Law & Legal
- Literature, Anthologies & Poetry
- Medicine & Medical
- Military & Warfare
- Music / Musical Instruments
- Natural History
- New Age / Mind / Body / Spirit
- Philosophy
- Photography & Pictorials
- Political & Economics
- Psychology
- Reference - Annuals & Serials
- Religion & Religious Studies
- Science, Maths & Technology
- Self Help & Personal Management
- Society & Culture / Ethnic Studies
- Sports & Outdoor Recreation
- Stationery, Gift & Misc Items
- The Arts
- Transportation
- Travel
- True Crime & True Stories
- TV, Radio, Film & Theatre
- Children's Fiction
- Adventure Stories
- Animal Stories
- Baby, Touch & Feel
- Classics & Vintage
- Crime & Mystery
- Educational & Learning Readers
- Fairy Tale & Nursery Rhyme
- Fantasy & Magical Realism
- General Fiction
- Graphic Novels
- Historical
- Horror & Ghost
- Humorous Stories
- LGBTQIA+
- Maori, NZ & Pasifika
- Picture Storybooks
- Pop-up, Interactive & Activity
- Romance, Relationships & Family
- School & Sporting
- Sci-fi
- Short Stories
- Thriller & Suspense
- Children's Non Fiction
- Animals & Wildlife
- Atlases & Encyclopedias
- Autobio, Biographies & Memoirs
- Computer & Information Software
- Cooking, Food & Beverages
- Crafts, Hobbies, Games & Quizzes
- Dictionaries, Thesauri & Reference
- Early Learning & Learning Concepts
- Educational / Learning Readers
- English Language Teaching - ELT
- Environment & Conservation
- Gardening
- General Knowledge & Trivia
- General Non-Fiction
- Geography
- Graphic Novels
- Health & Fitness
- History
- Humour
- Languages
- LGBTQIA+
- Literature, Anthologies & Poetry
- Maori, NZ & Pasifika
- Military & Warfare
- Music
- Nature, Prehistoric World
- People & Places, Work & Industry
- Personal & Social Issues
- Pop-up, Lift-the-flap, Activity
- Religion & Religious Studies
- Science, Maths & Technology
- Sports & Outdoor Recreation
- Stationery, Gift & Misc
- Transportation
- True Stories
- TV, Radio, Film & Theatre
- Young Adult Fiction
- Young Adult Non Fiction
- Animals & Wildlife
- Autobio, Biographies & Memoirs
- Computer & Information Software
- Cooking, Food & Beverages
- Crafts, Hobbies, Games & Quizzes
- Dictionaries, Thesauri & Reference
- Educational / Learning Readers
- English Language Teaching - ELT
- General Knowledge & Trivia
- General Non-Fiction
- Geography
- Graphic Novels
- Health & Fitness
- History
- Humour
- LGBTQIA+
- Languages
- Literature, Anthologies & Poetry
- Maori, NZ & Pasifika
- Military & Warfare
- Music
- Nature, Prehistoric World
- People & Places, Work & Industry
- Personal & Social Issues
- Religion & Religious Studies
- Science, Maths & Technology
- Sports & Outdoor Recreation
- True Stories
- TV, Radio, Film & Theatre
- NZ Authors & Self Published
- University TextBooks
- Clearance Books
- T & C's
- Contact Us
Hacking Apis
Breaking Web Application Programming Interfaces
- Blurb -
Hacking APIs is a crash course in web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. Hacking APIs is a crash course on web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. You' ll learn how REST and GraphQL APIs work in the wild and set up a streamlined API testing lab with Burp Suite and Postman. Then you' ll master tools useful for reconnaissance, endpoint analysis, and fuzzing, such as Kiterunner and OWASP Amass. Next, you' ll learn to perform common attacks, like those targeting an API' s authentication mechanisms and the injection vulnerabilities commonly found in web applications. You' ll also learn techniques for bypassing protections against these attacks. In the book' s nine guided labs, which target intentionally vulnerable APIs, you' ll practice- . Enumerating APIs users and endpoints using fuzzing techniques . Using Postman to discover an excessive data exposure vulnerability . Performing a JSON Web Token attack against an API authentication process . Combining multiple API attack techniques to perform a NoSQL injection . Attacking a GraphQL API to uncover a broken object level authorization vulnerabilityBy the end of the book, you' ll be prepared to uncover those high-payout API bugs other hackers aren' t finding and improve the security of applications on the web.- Reviews -
"Corey Ball takes you on a journey through the lifecycle of APIs in such a manner that you' re wanting to not only know more, but also anticipating trying out your newfound knowledge on the next legitimate target. From concepts to examples, through to identifying tools and demonstrating them in fine detail, this book has it all. It IS the motherload for API hacking, and should be found next to the desk, well-read by ANYONE wanting to take this level of adversarial research, assessment, or DevSecOps seriously. " -Chris Roberts, @Sidragon1, vCISO/Researcher/Hacker "This book opens the doors to the field of API Hacking, a subject not very well understood. Using real-world examples that emphasize Access Control issues, this book will help you understand the ins and outs of securing APIs, hunt great bounties, and help organizations improve their API Security!" -Inon Shkedy, @InonShkedy, Security Researcher "Even though the internet is filled with information on any topic possible in cybersecurity, it is still hard to find solid insight on performing penetration tests on APIs. Corey' s book satisfies this demand-not only for the beginner cybersecurity practitioner, but also for the seasoned expert. " -Cristi Vlad, @CristiVlad25, Cybersecurity Researcher "Hacking APIs is extremely helpful for anyone who wants to get into penetration testing. In particular, this book gives you the tools to start testing the security of APIs, which are becoming a weak point for many modern web applications. Experienced security folks can get something out of the book too, as it features automation tips and protection bypass techniques that will up any pentesters' game. " -Vickie Li, @vickieli7, Developer Evangelist, Author of Bug Bounty Bootcamp- Author Bio -
Corey Ball is a cybersecurity consulting manager at Moss Adams, where he leads its penetration testing services. He has over ten years of experience working in IT and cybersecurity across several industries, including aerospace, agribusiness, energy, financial tech, government services, and healthcare. In addition to a bachelor' s degree in English and philosophy from Sacramento State University, Corey holds the OSCP, CCISO, CEH, CISA, CISM, CRISC, and CGEIT industry certifications.- Full Details -
| Status: | Indent title, imported to order |
| ISBN-13: | 9781718502444 |
| Published: | 5 Jul 2022 |
| Published In: | United States |
| Imprint: | No Starch Press (US) |
| Publisher: | No Starch Press (US) |
| Format: | Paperback |
| Height: | 234mm |
| Width: | 177mm |
| Pages: | 308 |
- Delivery ETA -
In stock - for items in stock we aim to dispatch the next business day. For delivery in NZ allow 2-5 business days, with rural taking a wee bit longer.
Locally sourced in NZ - stock comes from a NZ supplier with an approximate delivery of 7-15 business days.
International Imports - stock is imported into NZ, depending on air or sea shipping option from the international supplier stock can take 10-30 working days to arrive into NZ.
Pre-order Titles - delivery will vary depending on where the title is published, if local stock is available in NZ then 5-7 business days, for international imports it can be 10-30 business days. In all cases we will access the quickest supply option.
Delivery Packaging - we ship all items in cardboard sleeves or by box with either packing paper or corn starch chips. (We avoid using plastics bubble bags)
Tracking - Orders are delivered by track and trace courier and are fully insured, tracking information will be sent by email once dispatched.
 |
|
© Copyright 2024 AllBooks.NZ |