A10 and A9: API and Component Attacks

OWASP | Intermediate

12 Videos | 54m 41s
Includes Assessment
Earns a Badge

OWASP Top 10 list items 10 and 9 are exploits of APIs and components of web applications.

WHAT YOU WILL LEARN

define what an underprotected API is

describe how underprotected APIs can be exploited and what kind of access is needed to exploit it

describe how easy it is to detect underprotected APIs and how common they are

list the technical and business impacts of underprotected APIs

provide examples of underprotected API attacks

specify what a vulnerable component is
describe how vulnerable components can be exploited and what kind of access is needed to exploit them

describe how easy it is to detect vulnerable components and how common they are

list the technical and business impacts of vulnerable components

provide examples of vulnerable component attacks

purchase merchandise at an unauthorized discount

describe what A10 and A9 are and how they affect web application security

IN THIS COURSE

1.

A10 - Underprotected APIs

7m 13s

UP NEXT
2.

A10 - Underprotected API Exploits

3m 38s
3.

A10 - Underprotected API Detection

8m 17s

FREE ACCESS
4.

A10 - Unprotected API Impacts

3m 48s

FREE ACCESS
5.

A10 - Unprotected API Examples

3m 29s

FREE ACCESS
6.

A9 - Using Components with Known Vulnerabilities

3m 21s

FREE ACCESS
7.

A9 - Vulnerable Component Exploits

2m 12s

FREE ACCESS
8.

A9 - Vulnerable Component Detection

4m 7s

FREE ACCESS
9.

A9 - Vulnerable Component Impacts

4m 7s

FREE ACCESS
10.

A9 - Vulnerable Component Attacks

4m 44s

FREE ACCESS
11.

A9 - Shopping Cart Component Flaw

2m 16s

FREE ACCESS
12.

Exercise: A10 and A9 Security Risks

2m

FREE ACCESS

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

Skillsoft is providing you the opportunity to earn a digital badge upon successful completion of this course, which can be shared on any social network or business platform

Digital badges are yours to keep, forever.

COURSE OWASP Top 10: A4 - XML External Entities

COURSE OWASP: Top 10 Item A10

COURSE A8 and A3: Cross-Site Attacks

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE

COURSE Top 10 List Items

COURSE OWASP Overview

COURSE Secure Design

GET STARTED

Future-proof your skills and prepare for the next step in your career. Access role-based and skill-based learning paths including*:

Business skills, including Agile and Managing Stress
Tech skills in Python, Cloud, and thousands of others
Hands-on practice labs and coding sandboxes
Certifications, such as CompTIA, AWS, and more
Videos, books, and audiobooks—whatever works for you
Personalized recommendations aligned with your interests
Anytime, anywhere access on web or mobile
Team admin privileges to assign learning

*Content items for Compliance and Leadership are not included in this subscription but can be added upon request

PERSPECTIVES UNLEASHED 2021

It’s the learning event of the year! Join us September 22-23 for the future of corporate learning.

Learn More

Your content + our content + our platform = a path to learning success

Using our learning experience platform, Percipio, your learners can engage in custom learning paths that can feature curated content from all sources.

Learn More

Aspire to something bigger

Aspire Journeys are guided learning paths that set you in motion for career success.

Browse Aspire Journeys

A10 and A9: API and Component Attacks

WHAT YOU WILL LEARN

IN THIS COURSE

EARN A DIGITAL BADGE WHEN YOU COMPLETE THIS COURSE

YOU MIGHT ALSO LIKE

PEOPLE WHO VIEWED THIS ALSO VIEWED THESE