The holder of this badge has successfully completed the API Security Advanced challenge exercises in Pentester Academy's AttackDefense labs. These challenges test a practical understanding of how to perform parameter tampering, XSLT and code injections and dictionary attacks, recover deleted files from git repo, crack weak password hashes. These challenges include Injection Attacks (Code Injections and XSLT Injections), cracking weak password hashes, recovering deleted secrets from a git repo, exfiltrating data from a publicly exposed web server, and leveraging servers trusting client sent parameters to compromise the provided webapps!

User Avatar

Challenge I

User Avatar

Challenge II

User Avatar

Challenge III