Course Overview

Practical API Hacking provides you with everything you need to start hacking APIs. This course was designed for beginners and those familiar with web application hacking but want to expand their skill set.

The course covers industry-standard tools such as Burp Suite and Postman, and how to find and exploit vulnerabilities common to applications powered by APIs. Throughout the course there are demonstration labs to help you understand the theory, and challenges to make sure you get hands-on experience too.

Requirements

  • A machine capable of running Kali Linux.
  • Basic knowledge of how web applications work.

Learning Objectives

  • Understand how APIs work.
  • Understand how to enumerate API endpoints.
  • Understand common vulnerabilities in API-driven applications.
  • Perform successful attacks against vulnerable API endpoints.





APIs

Course Curriculum - 6 Hours

  Welcome to the Course!
Available in days
days after you enroll
  Introduction
Available in days
days after you enroll
  Lab Setup
Available in days
days after you enroll
  Enumerating APIs
Available in days
days after you enroll
  Attacking Authorization
Available in days
days after you enroll
  Attacking Authentication
Available in days
days after you enroll
  Injection
Available in days
days after you enroll
  Mid-course Capstone
Available in days
days after you enroll
  Mass Assignment
Available in days
days after you enroll
  Excessive Data Exposure
Available in days
days after you enroll
  SSRF - Server-side Request Forgery
Available in days
days after you enroll
  Chaining Vulnerabilities
Available in days
days after you enroll
  Final Capstone
Available in days
days after you enroll

This course is included in our
All-Access Membership
starting at $29.99/month

Get full access to the Practical Ethical Hacking course and our full course catalog when you enroll in our All-Access Pass Membership.

About the Instructor

Alex is a Web Application Security specialist with experience working across multiple sectors, from single-developer applications all the way up to enterprise web apps with tens of millions of users. He enjoys building applications almost as much as breaking them and has spent many years supporting the shift-left movement by teaching developers, infrastructure engineers, architects, and anyone who would listen about cybersecurity.

Alex holds a Master's Degree in Computing, as well as CEH and OSCP certifications.

Follow Alexon Social Media:

LinkedIn - https://www.linkedin.com/in/alex-olsen-47119322/

Courses Included in the All-Access Membership

Practical Ethical Hacking - The Complete Course

Learn how to hack like a pro. 25 hours of up to date practical hacking techniques with no filler.

Heath Adams

Heath Adams

Windows Privilege Escalation for Beginners

Learn how to escalate privileges on Windows machines with absolutely no filler.

Heath Adams

Heath Adams

Linux Privilege Escalation for Beginners

Learn how to escalate privileges on Linux machines with absolutely no filler.

Heath Adams

Heath Adams

Open-Source Intelligence (OSINT) Fundamentals

Learn the ins and outs of Open Source Intelligence and step up your investigative game.

Heath Adams

Heath Adams

External Pentest Playbook

Learn to conduct an external network penetration test from start to finish

Heath Adams

Heath Adams

Python 101 For Hackers

Learn Python with a focus on concepts and modules important for hacking

Riley Kidd

Riley Kidd

Linux 101

Everything you need to know to start using Linux

Brent Eskridge

Brent Eskridge

Practical Malware Analysis & Triage

Arm yourself with knowledge and bring the fight to the bad guys.

Matt Kiely

Matt Kiely

Mobile Application Penetration Testing

Learn Mobile Application Hacking for iOS and Android Devices

Aaron Wilson

Aaron Wilson

Python 201 For Hackers

Move beyond the basics and learn how to actively use Python as a Windows hacking tool

Riley Kidd

Riley Kidd

Practical Windows Forensics

Learn how to conduct a digital forensic investigation on a Windows system from start to finish

Markus Schober

Markus Schober

The Definitive GRC Analyst Master Class

Everything you need to know to dive into the cybersecurity GRC pool

Gerald Auger, PhD

Gerald Auger, PhD

Practical API Hacking

A hands-on course for hacking APIs.

Alex Olsen

Alex Olsen

Rust 101

Learn the foundational concepts of the Rust programming language.

Heath Adams

Heath Adams

Beginner's Guide to IoT and Hardware Hacking

Learn to perform security research and testing on IoT devices and hardware.

Andrew Bellini

Andrew Bellini

Detection Engineering for Beginners

Start thinking and working as a Detection Engineer.

Anthony Isherwood

Anthony Isherwood

Practical Bug Bounty

A hands-on course to prepare you for your first Bug Bounty adventure.

Heath Adams

Heath Adams

Programming with AI - Mini Course

Utilize Artificial Intelligence and Large Language Models to become a better programmer.

Heath Adams

Heath Adams

Soft Skills for the Job Market

Equip yourself with essential soft skills, communication techniques, and job application strategies required to excel in today’s competitive job market.

Heath Adams

Heath Adams

Practical Phishing Campaigns

This immersive course delves into practical phishing tactics, equipping cybersecurity professionals with the knowledge to perform professional phishing engagements.

Aaron Wilson

Aaron Wilson

Frequently Asked Questions


Can I get a refund if I'm unhappy with my purchase?

Yes. All purchases come with a 3-day money-back guarantee.


Will I receive a certificate of completion when I finish a course?

Yes. All courses come with a certificate of completion.


Do the courses count as Continuing Education Units (CEUs)?

Yes. Every certificate of completion comes with the total CEUs earned listed on the certificate.

What is the All-Access Pass?

As of July 1st, 2023 TCM Academy transitioned to a monthly subscription model, where you now receive full access to all of the courses on our platform for as long as your subscription remains active.


What if you already own courses on TCM Academy?

If you already own a course on our platform, you will continue to own that course forever. Previously owned courses will not be affected by this change.