Search Skills
Search across 54932 indexed skills
validating-api-contracts
Validate API contracts between services using consumer-driven contract testing to prevent breaking changes in microservice architectures. Supports Pac...
generating-api-contracts
Generate OpenAPI 3.0/3.1 specifications and consumer-driven contract tests from existing API implementations, design documents, or database schemas. P...
managing-api-cache
Implement intelligent API response caching using Redis, Memcached, or in-memory stores with cache key generation, TTL management, cache invalidation s...
testing-api-authentication-weaknesses
Assessing REST API authentication mechanisms for bypass vulnerabilities before production deployment Testing JWT token implementation for common weakn...
performing-api-rate-limiting-bypass
Testing whether API rate limiting can be circumvented to enable brute force attacks on authentication endpoints Assessing the effectiveness of API thr...
performing-api-security-testing-with-postman
Building repeatable API security test suites for OWASP API Security Top 10 coverage Creating automated security regression tests that run in CI/CD pip...
implementing-api-rate-limiting-and-throttling
Protecting authentication endpoints against brute force and credential stuffing attacks Preventing API abuse and resource exhaustion from automated sc...
implementing-api-abuse-detection-with-rate-limiting
API rate limiting is a critical security control that restricts the number of requests a client can make within a defined time period. It defends agai...
performing-api-fuzzing-with-restler
Performing automated security testing of REST APIs using their OpenAPI/Swagger specifications Discovering bugs that only manifest through specific seq...
performing-api-inventory-and-discovery
Mapping the complete API attack surface of an organization before a security assessment Identifying shadow APIs deployed by development teams without ...
implementing-api-security-testing-with-42crunch
42Crunch is an API security platform that combines Shift-Left security testing with Shield-Right runtime protection. It provides API Audit for static ...
exploiting-api-injection-vulnerabilities
Testing API endpoints that accept user input for database queries, system commands, or external requests Assessing APIs that interact with SQL databas...