🛡 🔨 🛡 🔨 🛡 🔨 🛡 🔨 Since the release of Hacking APIs, I've wanted to create a way for you to demonstrate your API hacking skills to yourself and to others. I'd like to introduce you to the API Security Certified Professional (ASCP)!

"Burp AI can bring up a new generation of hackers faster and more effectively.​​​​​​" In his new article, @hAPI_hacker explores how Burp AI: 🔬 Analyzes requests and adapts when attacks fail. 💬 Explains findings in clear language. 💪 Enhances human decision-making. 👉

You've learned SQL injection, but have you learned NoSQL injection? This learning path covers the detection, exploitation, and prevention of NoSQL injection vulnerabilities. You’ll learn: 🔶 The core principles behind NoSQL injection and the different types of attacks. 🔶 How

What's DOM XSS and how do you find it? Here is how👇 ( With @InsiderPhD )

Somehow this old bug class keeps popping up in modern web apps! Path traversal is the gift that keeps on giving 😁 This learning path covers path traversal vulnerabilities, teaching you how to perform attacks, circumvent common obstacles, and prevent them in your applications.

Bug Bounty Tool: Kiterunner bruteforces API routes using contextual wordlists to uncover hidden endpoints fast: GitHub https://t.co/D6m5We4yMP

BONUS: Your ticket includes full access to: → @APIdaysGlobal → GenerationAI @GenerationAICon → GreenIO Paris 2025 Four conferences, one ticket, zero cost Reserve now:

What you'll learn: - AI agent security - Practical API hacking techniques - Mobile app security deep dives - Deep dive into vibe-coded risks

The speaker lineup is absolutely stacked: Keynotes from hacker Chris Roberts and @isamauny Presentations and workshops by @Gabrielle_BGB @brentonhouse @PortSwigger @AikidoSecurity and @getpostman !

Hacking APIs Conference Paris is December 11th and it's completely FREE 🎯 with the code in this thread. Here's why you should be there 🧵

Read Hackinjg with Burp AI in the Chesspocalypse: https://t.co/DgOubHaQ5l

Launching The Hab by @hapilabs_ai, a content hub for research, reflections, and real talk about cybersecurity. ✍ 1 Blog / month commitment 🎯 Fun, authentic, slightly unhinged 🤖 No AI slop, guaranteed First up: "Hacking with Burp AI in the Chesspocalypse" I explore our place

The details on the CVSS 9.9 request smuggling in Kestrel are finally out! Great find by @praetorianlabs. https://t.co/ej5QVIbm04

starting in 10 mins!!! 1pm est get there and learn some amazing skills that can help you on the job search with @apollographql link below

Sharpen your API expertise at apidays Paris !  This December, apidays introduces a new serie of in-person masterclasses : deep, hands-on learning sessions led by some of the most respected voices in the API community.  Join @mamund , @erikwilde, @fkilcommins, and @mgboydcom

Check out the course here:

🚀 New Course Alert! 🚀 MCP Security Fundamentals is completely FREE over at @apisecu . I had a lot of fun making this one. 👉 Vibe coded an MCP Server using Cursor for @apisec_ai 👉 Showed off the power of MCP servers 👉 Demonstrated how MCP security can go so wrong This

☁️ Clever Cloud Enterprise Summit joins FOST Paris 2025! Dec 11 · CNIT FOREST · Paris La Défense With @clever_cloud, Carine Guillemet, & Clovis Carbone — shaping the future of European cloud sovereignty & digital resilience. 🎟️ Join us → https://t.co/mgHSOiaus2 #apidaysParis

I usually brute-force API paths with "Debug":true parameter and often it leads to reveal internal debug info to reverse proxies exposing API secrets and tokens.

Thinking of starting a career in cyber security? I've got you! ✨ Join The Hacking Games and I for an AMA where I discuss how to get work ready in the tech field! https://t.co/Eus1T9A2xA

AI The Docs → joins FOST Paris 2025! Dec 10 · CNIT FOREST · Paris La Défense One day. All about docs × AI × DX. Join the community shaping the future of developer experience. More info: https://t.co/bYomD9wjMp #AITheDocs #FOSTParis #APIDocs #FutureOfSoftware