Photo 1 sur 1
VENTE TERMINÉE
Hacking APIs : Breaking Web Application Programming Interfaces by Corey J. Ball
État :
Terminé : mai 27, 2024 21:58:52 HAE
Expédition :
Lieu : Lancaster, New York, États-Unis
Livraison :
Livraison prévue entre le ven. 21 juin et le mar. 25 juin à 43230
Renvois :
Paiements :
Magasinez en toute confiance
Informations sur le vendeur
- 100% d'évaluations positives
Le vendeur assume l'entière responsabilité de cette annonce.
Numéro de l'objet eBay :355729943518
Caractéristiques de l'objet
- État
- ISBN
- 9781718502444
- Subject Area
- Computers, Mathematics
- Publication Name
- Hacking APIs : Breaking Web Application Programming Interfaces
- Item Length
- 9.2 in
- Publisher
- No Starch Press, Incorporated
- Subject
- Web / Web Services & APIs, Web / Web Programming, General, Security / Networking
- Publication Year
- 2022
- Type
- Textbook
- Format
- Trade Paperback
- Language
- English
- Item Height
- 0.9 in
- Item Width
- 7 in
- Item Weight
- 23.6 Oz
- Number of Pages
- 368 Pages
À propos de ce produit
Product Information
Hacking APIs is a crash course in web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. Hacking APIs is a crash course on web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure. You'll learn how REST and GraphQL APIs work in the wild and set up a streamlined API testing lab with Burp Suite and Postman. Then you'll master tools useful for reconnaissance, endpoint analysis, and fuzzing, such as Kiterunner and OWASP Amass. Next, you'll learn to perform common attacks, like those targeting an API's authentication mechanisms and the injection vulnerabilities commonly found in web applications. You'll also learn techniques for bypassing protections against these attacks. In the book's nine guided labs, which target intentionally vulnerable APIs, you'll practice: Enumerating APIs users and endpoints using fuzzing techniques Using Postman to discover an excessive data exposure vulnerability Performing a JSON Web Token attack against an API authentication process Combining multiple API attack techniques to perform a NoSQL injection Attacking a GraphQL API to uncover a broken object level authorization vulnerability By the end of the book, you'll be prepared to uncover those high-payout API bugs other hackers aren't finding and improve the security of applications on the web.
Product Identifiers
Publisher
No Starch Press, Incorporated
ISBN-10
1718502443
ISBN-13
9781718502444
eBay Product ID (ePID)
8057262589
Product Key Features
Publication Name
Hacking APIs : Breaking Web Application Programming Interfaces
Format
Trade Paperback
Language
English
Subject
Web / Web Services & APIs, Web / Web Programming, General, Security / Networking
Publication Year
2022
Type
Textbook
Subject Area
Computers, Mathematics
Number of Pages
368 Pages
Dimensions
Item Length
9.2 in
Item Height
0.9 in
Item Width
7 in
Item Weight
23.6 Oz
Additional Product Features
LCCN
2021-061101
Intended Audience
Trade
Lc Classification Number
Qa76.76.A63b35 2022
Reviews
"Corey Ball takes you on a journey through the lifecycle of APIs in such a manner that you're wanting to not only know more, but also anticipating trying out your newfound knowledge on the next legitimate target. From concepts to examples, through to identifying tools and demonstrating them in fine detail, this book has it all. It IS the motherload for API hacking, and should be found next to the desk, well-read by ANYONE wanting to take this level of adversarial research, assessment, or DevSecOps seriously." --Chris Roberts, @Sidragon1, vCISO/Researcher/Hacker "This book opens the doors to the field of API Hacking, a subject not very well understood. Using real-world examples that emphasize Access Control issues, this book will help you understand the ins and outs of securing APIs, hunt great bounties, and help organizations improve their API Security!" --Inon Shkedy, @InonShkedy, Security Researcher "Even though the internet is filled with information on any topic possible in cybersecurity, it is still hard to find solid insight on performing penetration tests on APIs. Corey's book satisfies this demand--not only for the beginner cybersecurity practitioner, but also for the seasoned expert." --Cristi Vlad, @CristiVlad25, Cybersecurity Researcher " Hacking APIs is extremely helpful for anyone who wants to get into penetration testing. In particular, this book gives you the tools to start testing the security of APIs, which are becoming a weak point for many modern web applications. Experienced security folks can get something out of the book too, as it features automation tips and protection bypass techniques that will up any pentesters' game." --Vickie Li, @vickieli7, Developer Evangelist, Author of Bug Bounty Bootcamp "[ Hacking APIs is] the best source of API info I've seen. If you're curious about what APIs are and how they work, read it once. If you work with or create APIs, read it twice. If you break APIs, read it three times." --Graham Helton, @GrahamHelton3 "One of the few books that is actually dedicated to API hacking. . . . a great resource for anyone who wants to learn more about API security and how to hack into web applications. It provides in-depth information on how to break through various types of APIs, as well as tips on how to stay ahead of the curve in this rapidly changing field." --Dana Epp, Security Boulevard "This book has more to offer than hacking APIs but sets down a solid foundation of tools and techniques that would benefit any developer or QA Engineer that has to develop, test, or otherwise work with APIs." --John Wenning, Cybersecurity Researcher, Fortra "A thorough guide to what APIs are, how they work, what technologies they use, the various common insecurities that APIs have, and, most importantly, how to exploit them. . . . I would recommend Hacking APIs as a great read for anyone interested in learning more about the vulnerable side of APIs." --Darlene Hibbs, Senior Cybersecurity Researcher, Fortra, "Corey Ball takes you on a journey through the lifecycle of APIs in such a manner that you're wanting to not only know more, but also anticipating trying out your newfound knowledge on the next legitimate target. From concepts to examples, through to identifying tools and demonstrating them in fine detail, this book has it all. It IS the motherload for API hacking, and should be found next to the desk, well-read by ANYONE wanting to take this level of adversarial research, assessment, or DevSecOps seriously." --Chris Roberts, @Sidragon1, vCISO/Researcher/Hacker "This book opens the doors to the field of API Hacking, a subject not very well understood. Using real-world examples that emphasize Access Control issues, this book will help you understand the ins and outs of securing APIs, hunt great bounties, and help organizations improve their API Security!" --Inon Shkedy, @InonShkedy, Security Researcher "Even though the internet is filled with information on any topic possible in cybersecurity, it is still hard to find solid insight on performing penetration tests on APIs. Corey's book satisfies this demand--not only for the beginner cybersecurity practitioner, but also for the seasoned expert." --Cristi Vlad, @CristiVlad25, Cybersecurity Researcher " Hacking APIs is extremely helpful for anyone who wants to get into penetration testing. In particular, this book gives you the tools to start testing the security of APIs, which are becoming a weak point for many modern web applications. Experienced security folks can get something out of the book too, as it features automation tips and protection bypass techniques that will up any pentesters' game." --Vickie Li, @vickieli7, Developer Evangelist, Author of Bug Bounty Bootcamp
Dewey Decimal
005.8
Dewey Edition
23
Illustrated
Yes
Description de l'objet du vendeur
Le vendeur assume l'entière responsabilité de cette annonce.
Numéro de l'objet eBay :355729943518
Expédition et manutention
Lieu où se trouve l'objet :
Lancaster, New York, États-Unis
Expédition :
Afghanistan, Afrique du Sud, Albanie, Algérie, Allemagne, Andorre, Angola, Anguilla, Antigua-et-Barbuda, Arabie saoudite, Argentine, Arménie, Aruba, Australie, Autriche, Azerbaïdjan, Bahamas, Bahreïn, Bangladesh, Belgique, Bermudes, Bhoutan, Bolivie, Bosnie-Herzégovine, Botswana, Brunéi Darussalam, Brésil, Bulgarie, Burkina Faso, Burundi, Bélize, Bénin, Cambodge, Cameroun, Canada, Chili, Chine, Chypre, Colombie, Corée du Sud, Costa Rica, Côte d'Ivoire, Danemark, Djibouti, Espagne, Estonie, Fidji, Finlande, France, Gabon, République du, Gambie, Ghana, Gibraltar, Grenade, Groenland, Grèce, Guatemala, Guinée, Guinée équatoriale, Guinée-Bissau, Guyana, Géorgie, Haïti, Honduras, Hong Kong, Hongrie, Inde, Indonésie, Irlande, Islande, Israël, Italie, Jamaïque, Japon, Jordanie, Kazakhstan, Kenya, Kirghizistan, Kiribati, Koweït, Laos, Lesotho, Lettonie, Liban, Libéria, Liechtenstein, Lituanie, Luxembourg, Macao, Macédoine, Madagascar, Malaisie, Malawi, Maldives, Mali, Malte, Maroc, Mauritanie, Mexique, Moldavie, Monaco, Mongolie, Montserrat, Monténégro, Mozambique, Namibie, Nauru, Nicaragua, Niger, Nigeria, Norvège, Nouvelle-Zélande, Népal, Oman, Ouganda, Ouzbékistan, Pakistan, Panama, Papouasie-Nouvelle-Guinée, Paraguay, Pays-Bas, Philippines, Pologne, Portugal, Pérou, Qatar, Roumanie, Royaume-Uni, Rwanda, République centrafricaine, République de Croatie, République dominicaine, République du Congo, République démocratique du Congo, République tchèque, Saint-Kitts-et-Nevis, Saint-Marin, Saint-Vincent-et-les Grenadines, Sainte-Lucie, Salvador, Samoa, Serbie, Seychelles, Sierra Leone, Singapour, Slovaque, Slovénie, Sri Lanka, Suisse, Suriname, Suède, Swaziland, Sénégal, Tadjikistan, Tanzanie, Taïwan, Tchad, Thaïlande, Togo, Tonga, Trinité-et-Tobago, Tunisie, Turkménistan, Turquie, Uruguay, Vanuatu, Vietnam, Wallis-et-Futuna, Yémen, Zambie, Zimbabwe, Égypte, Émirats arabes unis, Équateur, Érythrée, État de la Cité du Vatican, États-Unis, Éthiopie, Île Maurice, Îles Caïmans, Îles Salomon, Îles Turks et Caicos, Îles du Cap-Vert
Lieux exclus :
Barbade, Guadeloupe, Guyane française, Libye, Martinique, Nouvelle-Calédonie, Polynésie française, Russie, Réunion, Ukraine, Venezuela
Expédition et manutention | À | Service | Livraison*Voir les remarques sur la livraison |
---|---|---|---|
4,87 $US (environ 6,70 $C) | États-Unis | Expédition au tarif économique (USPS Media MailTM) | Livraison prévue entre le ven. 21 juin et le mar. 25 juin à 43230 |
Taxes |
---|
Des taxes peuvent s'appliquer à la conclusion de la transaction. En savoir plusEn savoir plus au sujet du paiement de taxes sur les achats eBay. |
Taxe de vente pour cet objet (355729943518)
Taxe de vente pour cet objet (355729943518)
Le vendeur facture une taxe de vente pour les États suivants :
État | Taux de la taxe de vente |
---|
Modalités de renvoi
Détails sur les modalités de renvoi |
---|
Le vendeur refusera les renvois pour cet objet. |
Détails du paiement
Modes de paiement
Évaluations comme vendeur (5)
n***r (21)- Évaluation laissée par l'acheteur.
Dernier mois
Achat vérifié
The game I purchased arrived well-packaged, on time, and in great condition.
j***l (246)- Évaluation laissée par l'acheteur.
Dernier mois
Achat vérifié
Item was in very good condition.
1***6 (20)- Évaluation laissée par l'acheteur.
Dernier mois
Achat vérifié
Great game
Évaluations et avis sur le produit
Avis les plus pertinents
- sept. 06, 2022
Good info
Achat vérifié : OuiÉtat : NeufVendu par : shoppingmadeeasy2