API Security & the OWASP API Top10 (BOLA/IDOR) - Part 1 of 4

Logo
Presented by

Inon Shkedy, Head of Research @ Traceable AI

About this talk

In this 4-part webinar series, Inon Shkedy (Head of Security Research at Traceable AI; co-author OWASP API Top 10) explores the OWASP API Top 10 project and provides detailed explanations about the API threats documented in the OWASP project. In the first episode in the series, Inon shares the motivation behind the project and answers the following questions: - Why is there a need for a new OWASP project for APIs? - How has application security changed in the last few years? - Why have APIs become such an attractive target for attackers? He also covers the most critical API vulnerability - Broken Object Level Authorization (BOLA) and explains how attackers have managed to exploit it in many large companies like Uber, Facebook, and Verizon. API Security Webinar Series: Episode 1 - Why OWASP API & #1-BOLA - This one! Episode 2 - OWASP API Top 10 #2 - #5 Episode 3 - OWASP API Top 10 #6 - #10 Episode 4 - API Penetration Testing To learn more about Traceable AI | https://traceable.ai To request a live demo or meeting | https://www.traceable.ai/request-demo

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (38)
Subscribers (2017)
Traceable identifies all of your APIs, and evaluates your API risk posture, stops API attacks that lead to incidents such as data exfiltration, and provides analytics for threat hunting and forensic research. With our solution, you can confidently discover, manage and secure all of your APIs, quickly deploy, and easily scale to meet the ongoing needs of your organization.