Hackers of India

vAPI: Vulnerable Adversely Programmed Interface

By Tushar Kulkarni on 07 Dec 2022 @ Blackhat : Arsenal
πŸ’» Source Code πŸ”— Link
#api-security #application-pentesting #secure-development #security-testing #sast #static-analysis #dynamic-analysis
Focus Areas: πŸ” Application Security , βš™οΈ DevSecOps , 🦠 Malware Analysis , 🌐 Web Application Security
This Tool Demo covers following tools where the speaker has contributed or authored
VAPI

Abstract

vAPI is a Vulnerable Interface in a Lab like environment that mimics the scenarios from OWASP API Top 10 and helps the user understand and exploit the vulnerabilities according to OWASP API Top 10 2019. The lab is divided into 10 exercises that sequentially demonstrate the vulnerabilities and give a flag if exploited successfully.