Monthly DC303 meeting - API Security Exercises with crAPI and vAPI

There is a recent wave of interest in API security within the broader security community, and APIs continue to be a promising source of security findings due to their ubiquity as the glue that connects disparate systems. With the goal of spending the latter half of the night on hands-on exercises, we will start with an introductory talk that will survey the resources that are available for learning API security, and discuss tips for what to look for when practicing with API-focused testing exercises.

After the intro talk, let's work through any questions regarding the exercises. If you would like to participate in the exercise half of the night, it is recommended in the interest of time to prepare before the meetup the tool/lab setup instructions under the "Lab Setup" chapter of API Sec University:
https://www.apisecuniversity.com/courses/api-penetration-testing