We may earn an affiliate commission when you visit our partners.
API Security with the OWASP API Security Top 10
Gavin Johnson-Lynn
Gavin Johnson-Lynn
This course will teach you about unique vulnerabilities faced by web-based APIs and the defenses you’ll need to protect them.
Read more
This course will teach you about unique vulnerabilities faced by web-based APIs and the defenses you’ll need to protect them.
Read more
This course will teach you about unique vulnerabilities faced by web-based APIs and the defenses you’ll need to protect them.
APIs are becoming increasingly common. They’re used in everything from web applications to smart devices. The more popular they become, the more attention they attract from hackers. If you’re creating an API then you need to know how to keep it secure. In this course, API Security with the OWASP API Security Top 10, you’ll learn to identify and defend against the most common API security vulnerabilities. First, you’ll explore individual vulnerabilities and the potential problems they can cause. Next, you’ll discover how attackers find and exploit those vulnerabilities. Finally, you’ll learn how to add defenses for each vulnerability. When you’re finished with this course, you’ll have the skills and knowledge of the top 10 API vulnerabilities needed, to create a secure, resilient API.
Register for this course and see more details by visiting:
OpenCourser.com/course/ngoa4w/api
What's inside
Syllabus
Course Overview
Understanding the OWASP API Security Top 10
Broken Object Level Authorization
Broken Authentication
Read more
Syllabus
Course Overview
Understanding the OWASP API Security Top 10
Broken Object Level Authorization
Broken Authentication
Read more
Broken Object Property Level Authorization
Unrestricted Resource Consumption
Broken Function Level Authorization
Unrestricted Access to Sensitive Business Flows
Server-side Request Forgery
Security Misconfiguration
Improper Inventory Management
Unsafe Consumption of APIs
Good to know
Good to know
Know what's good ,
what to watch for , and
possible dealbreakers
Appropriate for learners who want to keep their API secure
Appropriate for learners who are creating an API
Appropriate for learners who want to identify and defend against the most common API security vulnerabilities
Appropriate for learners who want to learn about unique vulnerabilities faced by web-based APIs
Appropriate for learners who want to learn about the defenses they’ll need to protect their APIs
Appropriate for learners who are interested in the OWASP API Security Top 10
Save this course
Save API Security with the OWASP API Security Top 10 to your list so you can find it easily later:
Save
Save
Activities
Coming soon
We're preparing activities for
API Security with the OWASP API Security Top 10.
These are activities you can do either before, during, or after a course.
Career center
Learners who complete API Security with the OWASP API Security Top 10 will develop knowledge and skills
that may be useful to these careers:
API Penetration Tester
API Penetration Tester
An API Penetration Tester helps to keep web-based APIs secure. You will learn the OWASP API Security Top 10, which lists the most common API security vulnerabilities, and how to defend against them. This course will help build a foundation for a successful career as an API Penetration Tester.
Application Security Engineer
Application Security Engineer
An Application Security Engineer helps to design and implement secure software applications. This course will help you to identify and defend against the most common API security vulnerabilities, which is a critical skill for an Application Security Engineer.
Information Security Analyst
Information Security Analyst
An Information Security Analyst helps to identify and mitigate security risks to an organization's information systems. This course will help you to understand the OWASP API Security Top 10, which is a critical resource for Information Security Analysts.
Cloud Security Architect
Cloud Security Architect
A Cloud Security Architect designs and implements security measures for cloud-based applications and infrastructure. This course will help you to understand the unique security challenges of APIs and how to secure them in a cloud environment.
Security Architect
Security Architect
A Security Architect designs and implements security measures for an organization's information systems. This course will help you to understand the unique security challenges of APIs and how to secure them in an enterprise environment.
Software Developer
Software Developer
A Software Developer designs, develops, and maintains software applications. This course will help you to write more secure code by teaching you the OWASP API Security Top 10, which lists the most common API security vulnerabilities.
Web Developer
Web Developer
A Web Developer designs, develops, and maintains websites and web applications. This course will help you to write more secure code by teaching you the OWASP API Security Top 10, which lists the most common API security vulnerabilities.
Security Consultant
Security Consultant
A Security Consultant helps organizations to identify and mitigate security risks. This course will help you to understand the OWASP API Security Top 10, which is a critical resource for Security Consultants.
DevOps Engineer
DevOps Engineer
A DevOps Engineer helps to bridge the gap between development and operations teams. This course will help you to understand the unique security challenges of APIs and how to secure them in a DevOps environment.
Network Security Engineer
Network Security Engineer
A Network Security Engineer designs and implements security measures for an organization's network. This course may be useful for understanding the security challenges of APIs and how to secure them at the network level.
Security Analyst
Security Analyst
A Security Analyst monitors and analyzes security data to identify and mitigate security threats. This course may be useful for understanding the OWASP API Security Top 10, which is a critical resource for Security Analysts.
Systems Administrator
Systems Administrator
A Systems Administrator manages and maintains computer systems and networks. This course may be useful for understanding the security challenges of APIs and how to secure them at the system level.
Technical Support Specialist
Technical Support Specialist
A Technical Support Specialist provides technical support to users of computer systems and software. This course may be useful for understanding the security challenges of APIs and how to troubleshoot API-related issues.
Security Auditor
Security Auditor
A Security Auditor reviews and evaluates an organization's security posture. This course may be useful for understanding the OWASP API Security Top 10, which is a critical resource for Security Auditors.
Database Administrator
Database Administrator
A Database Administrator manages and maintains databases. This course may be useful for understanding the security challenges of APIs and how to secure them at the database level.
For more career information including salaries, visit:
OpenCourser.com/course/ngoa4w/api
Reading list
We've selected nine books
that we think will supplement your
learning. Use these to
develop background knowledge, enrich your coursework, and gain a
deeper understanding of the topics covered in
API Security with the OWASP API Security Top 10.
Provides a comprehensive overview of application security. It covers a wide range of topics, including security testing, risk assessment, and incident response. It valuable resource for anyone who wants to learn more about application security.
Provides a comprehensive overview of network security. It covers a wide range of topics, including network security threats, network security controls, and network security testing. It valuable resource for anyone who wants to learn more about network security.
Provides a comprehensive overview of web application security vulnerabilities. It covers a wide range of topics, including web application security threats, web application security testing, and web application security patching. It valuable resource for anyone who wants to learn more about web application security.
Save
Provides a hands-on guide to penetration testing web applications. It covers a wide range of topics, including reconnaissance, scanning, exploitation, and reporting. It valuable resource for anyone who wants to learn more about penetration testing web applications.
Provides a comprehensive overview of computer security fundamentals, and it valuable resource for anyone who wants to learn more about computer security. It covers a wide range of topics, including network security, operating system security, and application security.
Provides a comprehensive overview of network security essentials, and it valuable resource for anyone who wants to learn more about network security. It covers a wide range of topics, including network security protocols, network security devices, and network security management.
Provides a comprehensive overview of hacking techniques, and it valuable resource for anyone who wants to learn more about hacking. It covers a wide range of topics, including penetration testing, social engineering, and malware analysis.
Provides a comprehensive overview of social engineering techniques, and it valuable resource for anyone who wants to learn more about social engineering. It covers a wide range of topics, including phishing, pretexting, and baiting.
Provides a comprehensive overview of information security management, and it valuable resource for anyone who wants to learn more about information security management. It covers a wide range of topics, including information security governance, risk management, and incident management.
For more information about how these books relate to this course, visit:
OpenCourser.com/course/ngoa4w/api
Share
Similar courses
Here are nine courses similar to
API Security with the OWASP API Security Top 10.
Developer Security Champion: API Security
OpenCourser.com/course/ydeyw9/developer
Developer Security Champion: API Security
Most relevant
Secure Coding in React
OpenCourser.com/course/rhotyy/secure
Secure Coding in React
Most relevant
Analyzing and Visualizing Data in Looker
OpenCourser.com/course/gurmy4/analyzing
Analyzing and Visualizing Data in Looker
Most relevant
OWASP Top 10: What's New
OpenCourser.com/course/nzk7ul/owasp
OWASP Top 10: What's New
Most relevant
Analyzing Security Threats
OpenCourser.com/course/da896w/analyzing
Analyzing Security Threats
Most relevant
Secure Software Implementation for CSSLP®
OpenCourser.com/course/6vfah0/secure
Secure Software Implementation for CSSLP®
Most relevant
Kubernetes Security: Implementing Supply Chain Security
OpenCourser.com/course/mkjaak/kubernetes
Kubernetes Security: Implementing Supply Chain Security
Most relevant
Application Security for Developers
OpenCourser.com/course/o801th/application
Application Security for Developers
Most relevant
Application Security
OpenCourser.com/course/h35kv7/application
Application Security
Most relevant
Time
119 hours
Level
Intermediate
Via
Pluralsight
Instructor
Gavin Johnson-Lynn
Language
English
Good to know
Appropriate for learners who want to keep their API secure
Appropriate for learners who are creating an API
Appropriate for learners who want to identify and defend against the most common API security vulnerabilities
Appropriate for learners who want to learn about unique vulnerabilities faced by web-based APIs
Appropriate for learners who want to learn about the defenses they’ll need to protect their APIs
Appropriate for learners who are interested in the OWASP API Security Top 10
Our mission
OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.
Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.
Find this site helpful? Tell a friend about us.
Affiliate disclosure
We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.
Your purchases help us maintain our catalog and keep our servers humming without ads.
Thank you for supporting OpenCourser.
© 2016 - 2024 OpenCourser