The API Hacker's Month in Review - March 2023 πŸ—“οΈ πŸ‘€


Hey friend πŸ‘‹,

It's that time again...

Time for another month in review!

Latest Articles

So, here is a synopsis of what I wrote about last month:

Community News

AppSec Days

So for those in the Pacific Northwest, the OWASP AppSec Days Pacific Northwest conference is shaping up. Got some great keynotes locked in and early bird tickets are now available on the website.

New API security course

The crew over at APISec University has released a new API Security Fundamentals course. It's a great introduction to WHY API security breaches happen and covers at a high level how this fits in with the OWASP API Security Top 10. It even covers the latest changes for 2023! If you know someone who is brand new to API hacking, have them check out this course. It's FREE!

Wanna learn how to hack from the inside out?

If you are in the Vancouver area on April 20th, come by the downtown campus of Microsoft to hear me talk about how to look at your web apps and APIs more offensively to discover the exploitability of your code before your adversaries do. I'll be covering how to trace exploitability through taint analysis and discuss what to look for during code review to find vulnerabilities that your favorite scanners can't find.

You can register for the event here.

I just want to say thanks

I'm grateful that you have read this far. And that you regularly read my articles. I do hope you find them helpful.

Last month I asked for your help in sharing what you wanted to hear about. Thanks to everyone who filled out that survey. (Feel free to do so if you haven't already πŸ™ƒ ).

The feedback was interesting. Most people said to just keep on going. Some colorful responses include people wanting me to offer online training, live streaming, and maybe my own book. I also have some great ideas for future articles... so stay tuned.

And again, thanks for being part of the community and sharing your thoughts and wishes. You can respond to ANY of my emails with comments, feedback, and suggestions at any time. They are always most welcome.

In the meantime, hack hard!
Dana


You're reading the API Hacker's Inner Circle Newsletter created by Dana Epp (he/him).

🧠 I help teach developers, testers, and hackers how to improve their API hacking tradecraft. Thanks for reading. πŸ™

⏩ Enjoy the newsletter? Please forward this to a friend who would find these articles and insights useful!

πŸ‘‹ Did a pal share this with you? Sign up for your own copy here. I send out the newsletter every Tuesday.

😈 The API Hacker Inner Circle

Helping developers, testers, and hackers improve their approach to appsec and find vulnerabilities in their apps and APIs before their adversaries do. Interested to know more? Subscribe to my newsletter below!

Read more from 😈 The API Hacker Inner Circle

Hey friend πŸ‘‹, WTF, where did June go? I swear I blinked, and it was gone. Apologies for this newsletter not arriving yesterday. It was Canada Day, and I was out being loud and proud. (Sorry... couldn't resist. πŸ‡¨πŸ‡¦) In all honesty, I was sitting quietly eating cookies and catching up on some reading. And not some funky flavour of Oreos (albeit they have some great Maple Cream Oreos out there), but some patriotic Maple Leaf Peek Freans. IYKYK. Canadians prefer Birthday cookies (or Nanaimo bars...

Hey friend πŸ‘‹, Wow, did May go by fast. I think these months need to start getting rate-limited so I can actually keep up. I have to admit though, members of the inner circle have kept me going. First, Stephen sent me this... I got a chuckle from that. And then Viktor shared with me a new flavor he came across... WTF? Who would eat that? I'm all for hacking late at night with a plate of cookies, but damn. Silliness aside, the last thing we want is kids seeing that. You just never know these...

Hey friend πŸ‘‹, April has been a bit intense. Ya, it started with jokers putting toothpaste in our Oreos. 🀒 It ended with some well-deserved R&R on the beaches of the West Coast of Vancouver Island. I can't complain too much; I mean, I was also introduced to Churro Oreos... I can't believe these are a thing... ... and it ended with long walks along the beach... Walking along Cox Bay for a week isn't a bad way to decompress... While I was away, I got to finish reading Pegasus: How a Spy in Your...