Overview
Explore an in-depth presentation on automating API penetration testing using fuzzapi, recorded at AppSecUSA 2016 in Washington, DC. Delve into the challenges faced by developers in creating secure REST APIs for web and mobile platforms simultaneously. Discover how even mature development teams from tech giants like Facebook, Google, and Microsoft encounter API vulnerabilities. Learn about a new OWASP project that addresses these issues by providing a platform to test and understand common API vulnerabilities in both web and mobile applications. Gain insights into an API Fuzzer tool that can be integrated into the build pipeline for early vulnerability detection. Hear from security experts Abhijeth Dugginapeddi and Lalith Rallabhandi as they share their experiences and introduce this valuable resource for developers and penetration testers alike.
Syllabus
Automating API Penetration Testing using fuzzapi - AppSecUSA 2016
Taught by
OWASP Foundation