O'Reilly logo

Mastering Modern Web Penetration Testing by Prakhar Prasad

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Basic methodology to test developer APIs

This methodology can be used to test any developer API. One needs to go through the following steps in order to successfully test the given API. The steps are as follows:

  • Listing endpoints
  • Firing different request methods
  • Exploiting bugs

Listing endpoints

One needs to list the endpoints which are to be examined. For example, if you are testing the Graph API and you are targeting the photos endpoint, you need to list all relevant endpoints that supplement the photos endpoint. This includes studying the photo endpoint and finding out all related functionalities, such as posting a photo, updating a photo, or deleting a photo. Also, you need to learn the difference between posting a photo on a page and on a user ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required