Choose your country
Delivery choices and times vary depending on your location
Description:
About this item:
Review
Corey Ball takes you on a journey through the lifecycle of APIs in such a manner that you're wanting to not only know more, but also anticipating trying out your newfound knowledge on the next legitimate target. From concepts to examples, through to identifying tools and demonstrating them in fine detail, this book has it all. It IS the motherload for API hacking, and should be found next to the desk, well-read by ANYONE wanting to take this level of adversarial research, assessment, or DevSecOps seriously.
--Chris Roberts, @Sidragon1, vCISO/Researcher/Hacker
This book opens the doors to the field of API Hacking, a subject not very well understood. Using real-world examples that emphasize Access Control issues, this book will help you understand the ins and outs of securing APIs, hunt great bounties, and help organizations improve their API Security!
--Inon Shkedy, @InonShkedy, Security Researcher
--Chris Roberts, @Sidragon1, vCISO/Researcher/Hacker
This book opens the doors to the field of API Hacking, a subject not very well understood. Using real-world examples that emphasize Access Control issues, this book will help you understand the ins and outs of securing APIs, hunt great bounties, and help organizations improve their API Security!
--Inon Shkedy, @InonShkedy, Security Researcher
About the Author
Corey Ball is a cybersecurity consulting manager at Moss Adams, where he leads its penetration testing services. He has over ten years of experience working in IT and cybersecurity across several industries, including aerospace, agribusiness, energy, financial tech, government services, and healthcare. In addition to a bachelor’s degree in English and philosophy from Sacramento State University, Corey holds the OSCP, CCISO, CEH, CISA, CISM, CRISC, and CGEIT industry certifications.
Review:
5.0 out of 5
100.00% of customers are satisfied
5.0 out of 5 stars Good Paper quality and fast delivery
Paper quality was good and it arrived quickly
5.0 out of 5 stars Very useful book
The book is full of valuable information and walks you through deliberately vulnerable API Labs to reinforce what you've learned. Brilliant!
A high tech and foundational cyber security book
"Hacking APIs" by Corey Ball, published in 2022 by No Starch Press, is a comprehensive guide to web API security testing. APIs, or Application Programming Interfaces, serve as intermediaries between software programs, enabling seamless communication. This book uniquely delves into API fundamentals and security practices, offering clear explanations and practical examples. It covers enumeration tools, vulnerability discovery, and emphasizes the importance of API security in the context of modern cyber trends like microservices. Despite the negative connotations associated with hacking, the book aims to educate cybersecurity enthusiasts on protecting systems rather than causing harm. For beginners, it provides a solid introduction to APIs and their vulnerabilities, while experienced professionals can benefit from its insights into advanced tools and techniques. In a rapidly evolving tech landscape dominated by mobile apps, understanding API security is paramount. "Hacking APIs" reframes the term "hacker" in its original context of creative problem-solving and system improvement, highlighting the crucial role of API security in safeguarding against cyber threats.
Excellent
One of the best books I’ve read in a long time. Corey is an exceptional pen tester and mentor. He simplifies and deliver the content is an easy to digest way. The subject is very interesting. He covered a real need in that book.I practically like all No Starch Press publications. 🙂
Must read book for bug hunters and api developers
Amazing book by corey....i wish i would have bought this book early
Very good
I have read the book on 10 days and i feel i can hack APIs, whereas i had a backgroud about web hacking issues, the book is well organized and the reading was done seamlessly. There is a minor caveat, sometimes there is a lack of screenshot when operations in tools are describted, but It just occurs a couple of times or more.
Excellent Resource for API Hacking and Bug Bounty
The author has done a perfect job of structuring and explaining this book. Not only does he explain in great detail for the beginner how APIs work, he shows in depth how to exploit them and walks you through the latest tools used to enumerate and dissect them and understand what's going on behind the scenes. On top of it all there are labs where you can practice and the book is very well written so that you can follow along throughout and "learn as you go" so to speak.I have been looking for a resource on APIs as I begin bug bounty hunting, and this, by far has been the most valuable by itself. Definitely buy this book if like me, you want to learn about the intricacies of APIs and how to find and exploit the vulnerabilities for bug bounty.
Visit the No Starch Press Store
Hacking APIs: Breaking Web Application Programming Interfaces
BHD28095
Quantity:
|
Order today to get by
Free delivery on orders over BHD 20
'%3e%3crect%20x='0.599609'%20width='22.4'%20height='16'%20fill='%230A17A7'/%3e%3cpath%20fill-rule='evenodd'%20clip-rule='evenodd'%20d='M-0.426196%20-1.53223L9.1335%204.91587V-1.06506H14.4668V4.91648L24.0263%20-1.53147L25.2193%200.237148L17.6615%205.33494H23.0002V10.6683H17.6618L25.2187%2015.7655L24.0258%2017.5341L14.4668%2011.0865V17.0683H9.1335V11.0871L-0.425634%2017.5348L-1.61858%2015.7662L5.93947%2010.6683H0.600172V5.33494H5.93977L-1.61914%200.236387L-0.426196%20-1.53223Z'%20fill='white'/%3e%3cpath%20d='M15.5332%205.06615L25.6655%20-1.59961'%20stroke='%23DB1F35'%20stroke-width='0.533333'%20stroke-linecap='round'/%3e%3cpath%20d='M16.6094%2010.9578L25.6924%2017.0801'%20stroke='%23DB1F35'%20stroke-width='0.533333'%20stroke-linecap='round'/%3e%3cpath%20d='M7.00176%205.04727L-2.47266%20-1.33789'%20stroke='%23DB1F35'%20stroke-width='0.533333'%20stroke-linecap='round'/%3e%3cpath%20d='M8.02936%2010.8842L-2.47266%2017.8486'%20stroke='%23DB1F35'%20stroke-width='0.533333'%20stroke-linecap='round'/%3e%3cpath%20fill-rule='evenodd'%20clip-rule='evenodd'%20d='M0.599609%209.6H10.1996V16H13.3996V9.6H22.9996V6.4H13.3996V0H10.1996V6.4H0.599609V9.6Z'%20fill='%23E6273E'/%3e%3c/g%3e%3c/svg%3e)
Product origin: United Kingdom
All product information listed on the site are from 3rd party sources, including images and reviews. bolo.bh is not liable for any claims or promotions mentioned on the product description or images with textual content. For detailed product information, please contact the manufacturer or Bolo support by logging into your account. Unless stated otherwise during checkout, all import taxes and duty are included in the price mentioned on the product page. bolo.bh follows the rules and regulations of sale in Bahrain and will cancel items in an order that are illegal for sale in Bahrain. We take all the necessary steps to ensure only products for sale in Bahrain are displayed. Product stock and delivery estimate may change with the seller even after placing the order. All items are shipped by air and items marked “Dangerous Goods (DG)” by the IATA will be cancelled from orders. We strive to process your order as soon as it is finalized.
Similar suggestions by Bolo
More from this brand
Similar items from “Introduction to Network & Security”
Share with
X
Or share with link
https://bolo.com/