Basic methodology to test developer APIs

This methodology can be used to test any developer API. One needs to go through the following steps in order to successfully test the given API. The steps are as follows:

Listing endpoints
Firing different request methods
Exploiting bugs

Listing endpoints

One needs to list the endpoints which are to be examined. For example, if you are testing the Graph API and you are targeting the photos endpoint, you need to list all relevant endpoints that supplement the photos endpoint. This includes studying the photo endpoint and finding out all related functionalities, such as posting a photo, updating a photo, or deleting a photo. Also, you need to learn the difference between posting a photo on a page and on a user ...

Get Mastering Modern Web Penetration Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering Modern Web Penetration Testing by Prakhar Prasad

Basic methodology to test developer APIs

Listing endpoints

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly