Share this page!

Daniel Kelley Profile picture
Twitter logo
Oct 25 6 tweets 2 min read
23 free resources to learn about API security testing:

1. Video: Traceable AI, API Hacking 101.
2. Video: Katie Paxton-Fear, API Hacking.
3. Video: Bugcrowd, Bad API, hAPI Hackers.
4. Video: OWASP API Security Top 10 Webinar.
5. Blog: Detectify, How To Hack API's in 2021.
6. Blog: HackXpert, Let's build an API to hack.
7. Video: Bugcrowd, API Security 101 by Sadako.
8. Video: David Bombal, Free API Hacking Course.
9. Blog: Wallarm, How To Hack API In 60 Minutes.
10. Website: APIsecurity IO, API Security Articles.
11. Blog: Curity, The API Security Maturity Model.
12. Blog: Expedited Security, API Security MegaGuide.
13. Video: Grant Ongers, API Security Testing Workshop.
14. Videos: The XSS Rat, API Testing And Securing Guide.
15. Blog: APIsec OWASP API Security Top 10: A Deep Dive.
16. Podcast: We Hack Purple, API Security Best Practices.
17. Blog: Kontra Application Security, Owasp Top 10 for API.
18. Blog: Secure Delivery, OWASP API Top 10 CTF Walk-through.
19. Blog: SmartBear, How To Hack An API And Get Away With It.
20. Blog: Ping Identity, API Security: The Complete Guide 2022.
21. Video: SANS Offensive Operations, Analyzing OWASP API Security.
22. Blog: Bend Theory, Exploiting Unintended Functionality in API's.
23. Blog: Bright Security, Complete Guide to Threats, Methods & Tools.
Enjoyed this list?

Join 12,000+ subscribers receiving weekly curated cybersecurity content here:

danielmakelley.com/newsletter

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Daniel Kelley

Daniel Kelley Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @danielmakelley

Daniel Kelley Profile picture
Oct 25
30 cybersecurity search engines for researchers:

1. Dehashed—View leaked credentials.
2. SecurityTrails—Extensive DNS data.
3. DorkSearch—Really fast Google dorking.
4. ExploitDB—Archive of various exploits.
5. ZoomEye—Gather information about targets.
6. Pulsedive—Search for threat intelligence.
7. GrayhatWarfare—Search public S3 buckets.
8. PolySwarm—Scan files and URLs for threats.
9. Fofa—Search for various threat intelligence.
10. LeakIX—Search publicly indexed information.
11. DNSDumpster—Search for DNS records quickly.
12. FullHunt—Search and discovery attack surfaces.
13. AlienVault—Extensive threat intelligence feed.
14. ONYPHE—Collects cyber-threat intelligence data.
15. Grep App—Search across a half million git repos.
Read 8 tweets
Daniel Kelley Profile picture
Oct 23
Introducing 23 ways to learn Python for free:

1. Think Python — Free Ebook
2. Think Python 2e — Free Ebook
3. A Byte of Python — Free Ebook
4. Real Python — Online Platform
5. Full Stack Python — Free Ebook
6. freeCodeCamp — Online Platform
7. Dive Into Python 3 — Free Ebook
8. Practice Python — Online Platform
9. The Python Guru — Online Platform
10. The Coder's Apprentice — Free Ebook
11. Python Principles — Online Platform
12. Harvard's CS50 Python Video — Video
13. Cracking Codes With Python — Free Ebook
14. Learn Python, Break Python — Free Ebook
15. Google's Python Class — Online Platform
16. Python Like You Mean It — Online Platform
Read 6 tweets
Daniel Kelley Profile picture
Oct 22
Here are 26 cybersecurity YouTube channels:

1. Infosec Institute — Cybersecurity awareness.
2. Black Hat — Technical cybersecurity conferences.
3. Bugcrowd — Bug bounty methodology & interviews.
4. InfoSec Live — Tutorials & interviews.
5. David Bombal — Everything cybersecurity related.
6. Nahamsec — Hacking & bug bounty videos.
7. Computerphile — Basic concepts & techniques.
8. InsiderPHD — Get started with bug bounty hunting.
9. Security Weekly — Cybersecurity interviews.
10. John Hammond — Everything cybersecurity.
11. Peter Yaworski — Hacking tips & interviews.
12. IppSec — Labs & capture the flag tutorials.
Read 8 tweets
Daniel Kelley Profile picture
Oct 21
Here are 27 ways to learn ethical hacking for free:

1. Root Me — Challenges.
2. Stök's YouTube — Videos.
3. Hacker101 Videos — Videos.
4. InsiderPhD YouTube — Videos.
5. EchoCTF — Interactive Learning.
6. Vuln Machines — Videos and Labs.
7. Try2Hack — Interactive Learning.
8. Pentester Land — Written Content.
9. Checkmarx — Interactive Learning.
10. Cybrary — Written Content and Labs.
11. RangeForce — Interactive Exercises.
12. Vuln Hub — Written Content and Labs.
13. TCM Security — Interactive Learning.
14. HackXpert — Written Content and Labs.
15. Try Hack Me — Written Content and Labs.
Read 7 tweets
Daniel Kelley Profile picture
Oct 20
17 platforms where you can begin cybersecurity:

1. HackXpert - Free labs and training.
2. TryHackMe - Hands-on exercises and labs.
3. CyberSecLabs - High quality training labs.
4. Cybrary - Videos, labs, and practice exams.
5. LetsDefend - Blue team training platform.
6. Root Me - Over 400 cybersecurity challenges.
7. RangeForce - Interactive and hands-on platform.
8. Certified Secure - Loads of different challenges.
9. Vuln Machines - Real world scenarios to practice.
10. Try2Hack - Play a game based on the real attacks.
11. TCM Security - Entry level courses for cybersecurity.
12. EchoCTF - Train your offensive and defensive skills.
13. Hack The Box - Cybersecurity training platform.
Read 5 tweets
Daniel Kelley Profile picture
Oct 18
Here's a list of 43 cybersecurity YouTube channels:

1. Hak5 — General cybersecurity coverage.
2. The XSS Rat — Everything bounty hunting.
3. ITProTV — General cybersecurity coverage.
4. Infosec Institute — Cybersecurity awareness.
5. Cyrill Gössi — Extensive cryptography videos.
6. DC CyberSec — Generic cybersecurity coverage.
7. Black Hat — Technical cybersecurity conferences.
8. David Bombal — Everything cybersecurity related.
9. Outpost Gray — Cybersecurity career development.
10. Bugcrowd — Bug bounty methodology and interviews.
11. Network Chuck — Everything cybersecurity related.
12. Professor Messer — Guides covering certifications.
13. Cyberspatial — Cybersecurity education and training.
14. OWASP Foundation — Web-application security content.
15. Nahamsec — Educational hacking and bug bounty videos.
Read 12 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

Email the whole thread instead of just a link!

Separate emails with commas

:(