Upgrade to Pro — share decks privately, control downloads, hide ads and more …

INTERFACE by apidays 2023 - Reverse Engineering...

INTERFACE by apidays 2023 - Reverse Engineering Undocumented APIs, Dana Epp, Vulscan

INTERFACE by apidays 2023
APIs for a “Smart” economy. Embedding AI to deliver Smart APIs and turn into an exponential organization
June 28 & 29, 2023

Reverse Engineering Undocumented APIs
Dana Epp, Security Engineer, Security Researcher (and Influencer) at Vulscan

------

Check out our conferences at https://www.apidays.global/

Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8

Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io

Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/

apidays

July 11, 2023
Tweet

More Decks by apidays

Other Decks in Programming

Transcript

  1. ABOUT ME : Microsoft Security MVP | Microsoft Regional Director

    Security Engineer | Security Researcher danaepp.com
  2. API PUBLISHERS UPDATE THEIR DOCS LESS THAN TWICE A YEAR

    48% Source: Salt Security - https://salt.security/api-security-trends
  3. UPDATE API FAR MORE FREQUENTLY THAN THEIR DOCS ARE UPDATED

    83% Source: Salt Security - https://salt.security/api-security-trends
  4. How to generate and use rogue API documents HAR capture

    Generate YAML Edit YAML Generate OpenAPI doc Import to Postman Attack API with BurpSuite mi t mpr oxy2s wagger Br ows er (devtools) Vi s ual St udi o Code (or any text editor)