New course: Malware Analysis v2.0 is now available!
Back to courses
API Security Testing
API security testing: endpoint discovery, auth, permissions, OWASP API, contracts, limits and logging.
About this course
This course focuses on practical API testing for applications, integrations and internal services. Participants learn to discover endpoints, analyze contracts, test authorization, token handling, input validation, limits and logic errors. The program uses OWASP API Security Top 10 categories and translates them into daily team practice: test collections, issue documentation and corrective actions that backend teams can implement.
What you will learn
Map API endpoints, methods, contracts and data flows.
Test authentication, authorization and token handling.
Recognize OWASP API Security Top 10 risk classes.
Validate limits, input data and error behavior.
Build repeatable API test collections.
Report issues in a format useful for backend teams.
Syllabus
2 300 PLN
Catalog training price
Register Duration3 days
Module6
Attendance confirmationYes
Requirements
- HTTP and JSON basics.
- Web application experience is helpful.