API Badge
29 Videos
26 Exercises
The API badge is our set of exercises created to help you learn API testing. The first few challenges are based on challenges you already solved to get you more confident with API testing and review your knowledge and methodology. Then, harder challenges are provided to get you to the next level.
Exercises
Easy
PENTESTERLAB
API 01
- This exercise is the API version of an exercise you already solved in the Essential Badge. You should use it to get more confident with discovering vulnerabilities without any hint on what to look for.
- 1 video
- Completed by 2697 students
- Takes < 1 Hr. on average
- Rails/Angular
- API
- cwe-639,cwe-284
Easy
PENTESTERLAB
API 02
- This exercise is the API version of an exercise you already solved in another badge. You should use it to get more confident with discovering vulnerabilities without any hint on what to look for.
- 1 video
- Completed by 2256 students
- Takes < 1 Hr. on average
- Rails/Angular
- API
- CWE-327
Easy
PENTESTERLAB
API 03
- This exercise is the API version of an exercise you already solved in another badge. You should use it to get more confident with discovering vulnerabilities without any hint on what to look for.
- 1 video
- Completed by 1718 students
- Takes < 1 Hr. on average
- Rails/Angular
- API
- CWE-327
Coming soon
Medium
PENTESTERLAB
API Mobile 01
- This exercise covers how you can intercept traffic from a mobile application and uses this to gain access to sensitive information.
- Takes -- on average
- Node/React Native
Coming soon
Medium
PENTESTERLAB
Mongo IDOR II
- This challenge covers how to recover a Mongo ID to leverage an IDOR
- Takes -- on average
- ROR/MongoDB