| Mr. Bean's Guide to Avoiding Security Misconfigurations in APIs |
Ofer Hakimi |
May 01, 2023 |
778 |
- |
| Unveiling the Top API Security Vulnerabilities |
Tzvika Shneider |
Sep 05, 2023 |
1011 |
- |
| Survey of 250 Orgs: 98% Adopting LLMs Into Apps, While 24% Still Onboard Security Tools |
Golan Yosef |
Oct 27, 2025 |
736 |
- |
| How API Security became the Biggest Security Challenge in 2023 |
Tzvika Shneider |
Feb 06, 2023 |
1429 |
- |
| A Desi-Inspired Journey Through Broken Object-Level Authorization (BOLA) |
Ofer Hakimi |
Mar 23, 2023 |
794 |
- |
| API Tests: Functionality vs Security - Spot the Difference! |
Ofer Hakimi |
Feb 13, 2023 |
482 |
- |
| The Next Big Thing in AppSec: LLM Discovery and Security Testing |
Ofer Hakimi |
Nov 03, 2025 |
1285 |
- |
| Why Traditional Security Tools Can't Solve the API Security Problem |
Ofer Hakimi |
Feb 20, 2023 |
533 |
- |
| Why Avoiding the Shift Left for API Security is Like Wearing Your Underwear Backwards |
Ofer Hakimi |
Mar 06, 2023 |
535 |
- |
| Mass Assignment: The Iceberg that Sinks Your API's Security |
Ofer Hakimi |
Apr 25, 2023 |
1029 |
- |
| The Game of (Improper) Asset Management: Protecting Your APIs from the Seven Kingdoms of Vulnerabilities |
Ofer Hakimi |
May 16, 2023 |
659 |
- |
| 10 Amazing Facts About the API Revolution |
Tzvika Shneider |
Oct 22, 2025 |
718 |
- |
| Large Language Models: Unlocking Exciting Capabilities while Addressing New Security Concerns |
Golan Yosef |
Jun 05, 2023 |
571 |
- |
| Why Developers and Security Tools Just Don't Click |
Ofer Hakimi |
Mar 13, 2023 |
1508 |
- |
| The Matrix Chronicles: API Security and the battle for sufficient Logging and Monitoring |
Ofer Hakimi |
May 23, 2023 |
578 |
- |
| API Wars: The Battle Against Lack of Resources and Rate Limiting |
Ofer Hakimi |
Apr 10, 2023 |
1318 |
- |
| Demystifying MCP (Model Context Protocol): 3 Common Misconceptions |
Golan Yosef |
Apr 21, 2025 |
876 |
- |
| API Security Incidents in 2022: A Look Back |
Tzvika Shneider |
Jan 30, 2023 |
675 |
- |
| From Friction to Flow: Embedding API Security Where It Works |
Tzvika Shneider |
Jul 08, 2025 |
468 |
- |
| Recall the Risks: Protecting Against Injection Attacks in Your APIs |
Ofer Hakimi |
May 09, 2023 |
465 |
- |
| Understanding OWASP-10 for API Security |
Ofer Hakimi |
Feb 26, 2023 |
778 |
- |
| The Hidden Trade-Off of GenAI: Rewriting the Rules of Development |
Tzvika Shneider |
Oct 27, 2025 |
694 |
- |
| The State of MCP Security |
Golan Yosef |
Aug 13, 2025 |
777 |
- |
| Broken Authentication: A Guide to Keeping Your APIs Safe |
Ofer Hakimi |
Mar 27, 2023 |
813 |
- |
| Pynt Advantages: Why It Beats Burp and Zap for API Security Testing |
Ofer Hakimi |
Mar 20, 2023 |
506 |
- |
| API Visibility and Control Challenges: Bridging the Gaps in AppSec |
Ofer Hakimi |
Sep 14, 2023 |
941 |
- |
| We Surveyed 250 Security Professionals About Shift Left. Most Can't Make It Work |
Tzvika Shneider |
Sep 15, 2025 |
1249 |
- |
| Understanding the Different Use Cases of APIs |
Tzvika Shneider |
Oct 27, 2024 |
389 |
- |
| The Secret to Hacking is Context |
Ofer Hakimi |
Nov 10, 2025 |
1044 |
- |
| Saving the API World from Broken Function-Level Authorization - An Action-Packed Adventure |
Ofer Hakimi |
Apr 17, 2023 |
405 |
- |
| The Horror of Excessive Data Exposure |
Ofer Hakimi |
Apr 03, 2023 |
582 |
- |
| Code Execution Through Email: How I Used Claude to Hack Itself |
Golan Yosef |
Jul 16, 2025 |
646 |
- |