😈 The API Hacker Inner Circle

Where the heck did September go? It seems in the blink of an eye, we started seeing everything pumpkin-spiced showing up on the shelves, and now we're gearing up for October festivities. I will admit though that finding pumpkin-spiced Oreos was "interesting". Yeah, you can get pumpkin-spiced Oreos now! I wonder if I need to start looking out for Halloween Oreos. I'm sure they exist. 🤣 Anyway, I enjoyed those Oreos with coffee and a good book. Lately, I have been reading "A Vulnerable...

Wow. August went by fast. Fires. Floods. Hacker Summer camp. Just crazy. Honestly, I tried to hide from it all in August. I gravitated to the cool breeze of the sea when I could. Almost felt guilty listening to friends talk about the hell they were going through while I was looking at this: View from my balcony at the BlackRock Resort on Vancouver Island While I was on the island, I tried to get some reading in. I'm not much of a fiction reader. Cryptonoicon by Neal Stephenson is one of my...

Can you believe it? July has come and gone in the blink of an eye. It feels like just yesterday we were celebrating the start of summer, and now here we are, already stepping into August. Where did the time go? Anyways, this month I was hanging out in Whistler, catching up on some work and relaxation. I've been reading Four Battlegrounds: Power in the Age of Artificial Intelligence by Paul Scharre. Originally I picked up this book as I liked Paul's book on Army of None: Autonomous Weapons...

June was a lot of fun. We held the OWASP AppSec Days Pacific Northwest conference in Portland, Oregon... and sold out the show. Met a lot of appsec peeps in the community, including several from the API Hacker Inner Circle. Great to see those of you who came by! 👍🏼 Afterward, my wife and I took some time off to drive down the Oregon coast and just explore. What an amazing coastline. Having the time to explore also gave me some time to catch up on reading too. I've been reading The Perfect...

Hey friend 👋, Just got back from a trip to Alaska. It was beautiful weather, but it was still too damn cold for this Canadian boy. 🥶 I mean, just look how icy blue the water was in Glacier Bay... One good thing about the trip was that I got to drink a lot of hot chocolate and catch up on some reading. I just finished reading The Wires of War: Technology and the Global Struggle for Power. It was an interesting read from a Googler in the middle of it all, and it really got me thinking about...

Hey friend 👋, Last weekend was the annual BSides Vancouver conference. It was fantastic to see the security community getting together again in person. I had a great time chatting with Mikko after his keynote. We've been in the industry for about the same amount of time and have chewed a lot of the same ground over the years. With the weather looking so great, I couldn't stay cooped up at the conference. I grabbed Mikko's book and enjoyed an iced chai outside. Highly recommend you pick up...

Hey friend 👋, It's that time again... Time for another month in review! Latest Articles So, here is a synopsis of what I wrote about last month: I showcased some of the new changes coming to the OWASP API Security Top 10 list in 2023. I discussed the ins and outs of offensive AI and how we as API hackers can benefit from it. I explained why it’s important to include a working exploit in your vulnerability report and how to protect it so others don’t weaponize it. I shared my article...

Hey friend 👋, Where did February go? Where did February go... hmmmm? Time for another month in review! Latest Articles So, here is a synopsis of what I wrote about last month: I shared how as a hacker to beat down the demon of self-doubt and embrace imposter syndrome as a healthy signal for motivation and drive. I went into detail on how to exploit embedded APIs by dumping firmware, and walked you through how to swipe source code directly from microchips. I discussed how to look at your API...