APIsecurity
  • API Security for Rookies🐱‍👤
    • Lab Setup
      • Hacker's Kali Setup
      • API Hacking Lab
    • API Reconnaissance
      • Passive Reconnaissance
      • Active Reconnaissance
    • Endpoint Analysis
      • Reverse Engineering an API
      • Using APIs and Excessive Data Exposure
    • Scanning APIs
    • API Authentication Attacks
      • Classic Authentication Attacks
      • API Token Attacks
    • Exploiting API Authorization
      • BOLA
      • BFLA
    • Improper Asset Management
    • Mass Assignment
    • SSRF
    • Injection Attacks
    • Evasion & Combining Techniques
      • Evasive Maneuvers
      • Combining Techniques
    • Conclusion
Powered by GitBook
On this page
  • Introduction to Authentication Attacks
  • Introduction
  1. API Security for Rookies🐱‍👤

API Authentication Attacks

PreviousScanning APIsNextClassic Authentication Attacks

Last updated 1 year ago

Introduction to Authentication Attacks

Introduction

In this module you will learn how to test various aspects of APIs for authentication vulnerabilities. We'll use classic authentication attacks like brute force and password spraying, and then we'll look at analyzing tokens.

API Authentication Attacks