Sep 10Fuzzing APIsFuzzing or Fuzz testing is an automated testing method where random, invalid, distorted, or unexpected input is given to an API Endpoint to see if any crashes or bugs emerge. The aim of Fuzzing is to identify unknown bugs and defects. API Fuzzing is a way of API testing that…API8 min readAPI8 min read
Aug 9Matching Private Key Files with Certificate FilesIn my earlier article — High Level Overview of the SSL/TLS process and Inspecting the contents of Google’s certificate — I’ve explained the contents of a certificate, and we saw that the Certificate is a file containing important information (we inspected each section of the Certificate). In the same vain…4 min read4 min read
Jul 27Analyzing API EndpointsUnlock the world of API Hacking with our upcoming series, tailor-made for beginners looking to become API security experts We are currently developing a comprehensive guide that will be released in its entirety by September 2023. In the meantime, I’m thrilled to share a sneak peek of what’s to come. …Api Security16 min readApi Security16 min read
Jul 27High Level Overview of the SSL/TLS process and Inspecting the contents of Google’s certificatePicture yourself navigating a website, only to be met with a glaring warning that reads, “Your connection is not private” Immediately, an alarm sets off in your mind, cautioning you against potential risks to your personal information. In contrast, you encounter another website that seamlessly loads, accompanied by a comforting…8 min read8 min read
May 18Exploring the Intricacies of Online Security: My Adventures with Honeypots and SIEMHave you ever wondered how hackers try to gain access to computers and devices connected to the internet? It’s a wild and sometimes scary world out there, filled with scanners, bots, and nefarious individuals trying to exploit WEAK SECURITY CONFIGURATIONS. Recently, I decided to turn the tables on these bad…Siem4 min readSiem4 min read
