Podcast Episodes
Back to Search
Course 2 - API Security Offence and Defense | Episode 4: Aggressive Attacks, Traditional Vulnerabilities and Exploitation of Staging APIs
In this lesson, you’ll learn about:
Aggressive Attacks on APIsDenial of Service (DoS): Flooding servers to disrupt service; Layer 7 attacks mimic norm…
8Â months ago
Course 2 - API Security Offence and Defense | Episode 3: OAuth Protocol: Standards, Authorization Flows, Attacks, and Real-World Case Study
In this lesson, you’ll learn about:OAuth — purpose & distinction: an authorization protocol that grants third-party apps scoped access to user resour…
8Â months ago
Course 2 - API Security Offence and Defense | Episode 2: Authentication Methods and Security: Basic, Digest, and JSON Web Tokens (JWT)
In this lesson, you’ll learn about:
Authentication & Authorization Fundamentals:Authentication: Identifying the user.Authorization: Defining what acti…
8Â months ago
Course 2 - API Security Offence and Defense | Episode 1: API Fundamentals: Standards, Versioning, and Investigative Techniques
In this lesson, you’ll learn about:
APIs — Definition & Evolution:API (Application Programming Interface): A mechanism originally designed to allow so…
8Â months ago
Course 1 - BurpSuite Bug Bounty Web Hacking from Scratch | Episode 12: Cookies, Sessions, and Session Management Manipulation Vulnerability
In this lesson, you’ll learn about:HTTP is stateless: every request is independent, so web apps must implement state mechanisms to track users.Cookie…
8Â months ago
Course 1 - BurpSuite Bug Bounty Web Hacking from Scratch | Episode 11: Injection and Directory Path Traversal Attacks.
In this lesson, you’ll learn about:Critical Web Security Vulnerabilities — Overview: Focus on Injection Attacks and Directory Path Traversal Attacks,…
8Â months ago
Course 1 - BurpSuite Bug Bounty Web Hacking from Scratch | Episode 10: XSS: Overview, Security Level Testing, and Real-World Attacks
In this lesson, you’ll learn about:
Definition of Cross-Site Scripting (XSS):
A client-side web vulnerability where an application executes user-suppli…
8Â months ago
Course 1 - BurpSuite Bug Bounty Web Hacking from Scratch | Episode 9: Understanding and Finding SQL Injection Vulnerabilities
In this lesson, you’ll learn about:SQL Injection (SQLi) — definition & importance: what SQL is (Structured Query Language) and why data-driven apps a…
8Â months ago
Course 1 - BurpSuite Bug Bounty Web Hacking from Scratch | Episode 8: Exploiting Hidden Administrative Pages and Directory Listing
In this lesson, you’ll learn about:Security Misconfiguration — overview: a broad class of vulnerabilities caused by insecure defaults, incorrect appl…
8Â months ago
Course 1 - BurpSuite Bug Bounty Web Hacking from Scratch | Episode 7: Insecure Direct Object Reference (IDOR): Understanding, Testing
In this lesson, you’ll learn about:IDOR (Insecure Direct Object Reference) — definition: when user-supplied references (IDs) let attackers access or …
8Â months ago