OWASP Top 10 for API

Session
Until February 11:
✓ Raspberry Pi or C64 Mini for free
✓ Group discount
✓ Save up to € 404
Register now
Bis 11. Februar:
✓ Raspberry Pi oder C64 Mini gratis
✓ Kollegenrabatt
✓ Bis zu € 404 sparen
Jetzt anmelden
Thank you for attending
✓ See you in 2021!
Danke für Eure Teilnahme/span>
✓ Bis 2021!
Infos

Application security threats are evolving.Fortune 100 companies with large budgets and talented security engineers get breached through their APIs on a weekly basis. Uber full account takeover, the famous Facebook breach, & the Verizon customer bills leakage are just a few recent examples of API based breaches. Traditional vulnerabilities such as SQL injection, CSRF & XSS are less prevalent thanks to modern technologies and security education.
Attackers leverage the predictable and oversharing nature of REST APIs to exploit new types of vulnerabilities that are focused on business logic abuse and authorization. 

OWASP (the gold standard in AppSec) has acknowledged this shift in threats and has announced the OWASP API Security Project. The project addresses modern API threats and provides mitigation techniques.
Come learn from the leader of the project about:
– OWASP Top 10 For APIs and how they are different from traditional top 10 lists.
– Examples for complex API exploits, which involve many steps
– How to exploit an API as a pentester, and how to protect it as a developer.

This Session originates from the archive of Diese Session stammt aus dem Archiv von  The HagueDen Haag . Take me to the program of . Hier geht es zum aktuellen Programm von The Hague Den Haag .

This Session originates from the archive of Diese Session stammt aus dem Archiv von  The HagueDen Haag . Take me to the program of . Hier geht es zum aktuellen Programm von Berlin Berlin .

This Session Diese Session originates from the archive of stammt aus dem Archiv von The HagueDen Haag . Take me to the current program of . Hier geht es zum aktuellen Programm von The Hague Den Haag or oder Berlin Berlin .

All News & Updates of API Conference:

Behind the Tracks

API Management

A detailed look at the development of APIs

API Development

Architecture of APIs and API systems

API Design

From policies and identities to monitoring

API Platforms & Software as a Service

Web APIs for a larger audience & API platforms related to SaaS