My name is mark, please I have big challenge , I have a platform am carrying out bug boungting , but the platform is using bearer token auth, so each time I carry out parameter tempering I get 401, unauthorized , how do I bypass 401, and we’re is the problem coming from , is in url or the bearer token detecting that have change the original parameter ??
@jeanrocha6381 Жыл бұрын
😇 P r o m o S M
@4c00h Жыл бұрын
7:08 lol Thank you Dr Katie :)
@looperdup Жыл бұрын
🎯 Key Takeaways for quick navigation: 01:15 🛠️ Katie Paxton-Fear introduces her API hacking toolbox for finding vulnerabilities. 02:25 🧩 API testing involves using supportive tools to navigate APIs effectively. 04:01 🗺️ Enumeration identifies API endpoints and vulnerabilities for attack planning. 07:58 🔄 Automation eases API enumeration, reducing the challenge of handling numerous endpoints. 12:46 📜 Tailored wordlists using common nouns, verbs, and actions are effective for API testing. 15:06 ⚙️ Automated tools aid in API enumeration and vulnerability assessment. 19:26 🚪 Use "Authorize" tool to detect Idols (Broken Object/Function Level Authorization). 22:23 📑 Identify data leaks using regex patterns for emails and postcodes. 24:11 🎭 Analyze JSON Web Tokens for security vulnerabilities with the JWT Tool. 25:34 🛠️ Supportive tools enhance manual testing efficiency for effective black box testing. Made with HARPA AI
@jamesrclayton Жыл бұрын
Wasaaaait wait wait... Is that the godot guy? Heart Beast?
@nosferatu122 Жыл бұрын
that sounds so stupid
@nosferatu122 Жыл бұрын
thank you doctor pentester
@johnbaptistbypassinglife Жыл бұрын
DR KATIETHE GOAT
@camelotenglishtuition6394 Жыл бұрын
I am a big fan of her work. She cares about her audience too. Great addition to the community.
@bus7dz212 Жыл бұрын
nice and clear explanation Dr !
@buatsubs3961 Жыл бұрын
want a bo oh oh wo oh ?
@scarthebadguy Жыл бұрын
Lol a bottle of water🤣🤣🤣🤣🤣 this had me dying
@russroberts4939 Жыл бұрын
Great Content. Thank you!
@josediez7609 Жыл бұрын
Is there a way to prove to the bank the transaction where done remotely? How to prove they by pass the 2FA? The mobile was static and horizontal, not acceleration or movements. The malware could be SharkBot or Medusa. Thanks
@tprinty Жыл бұрын
Would love to get more involved in SBOM creation. Automation is the key because developers don't have time to maintain the SBOM.
@LoloisKali2 жыл бұрын
Thank you for your professional content. Your presentation was excellent keep it up! Thank David B for this loyal subscriber.
@johntoes12602 жыл бұрын
Yup teach me more for the dorks and nerds
@AshleyEhSMR2 жыл бұрын
Dr. Katie Paxton-Fear’s such a wealth of knowledge and does an excellent job explaining concepts that can be otherwise confusing. Thank you for this discussion ❤
@anthonygardner58602 жыл бұрын
How do you SPELL A P I???...Dr? I want to learn Everything you GOT!
@minor128282 жыл бұрын
Aplication Development Interface
@anusinghparmar Жыл бұрын
Its application programming interface aka API
@ishjustinofficial13032 жыл бұрын
ht
@rushikeshkale73032 жыл бұрын
very informative session. Thank you, sir.
@sdfawe-qo8eq2 жыл бұрын
Dr. Katie Paxton Fear; Her name itself foreshadows the doom of the world. Dr. FEAR!
@mcfly220052 жыл бұрын
first!
@BobBob-qm2bm2 жыл бұрын
Thanks Traceable and Dr. Paxton-Fear for sharing the knowledge to encourage and educate the community.
@0xQuito2 жыл бұрын
thank you for this amazing video i loved learning about API vulnerability :)
@lyleeewang2 жыл бұрын
subbed!
@eprohoda3 жыл бұрын
How is i tgoing?, Thank you, awesome my friend! 🤚
@JJ-dg9ez3 жыл бұрын
Is this traceable ai startup company
@TraceableAI3 жыл бұрын
Hi @Jeffin - yes we are. Check us out at www.traceable.ai . FYI, you can now start using Traceable AI in your API security projects for FREE (self-service and deployable in 10min or less) - www.traceable.ai/free
@bertrandfossung12163 жыл бұрын
Dr Katie is simply the best when it comes to explaining API hacking. Thank you for all the work you do.
@TraceableAI3 жыл бұрын
Thank you @Bertand Fossung. We couldn't agree more! It's been great working with Dr. Katie and stay tuned as we'll have more content coming from her soon!