Assessment
Question 1
True or False: The following resources are helpful when testing vAPI for API authentication weaknesses. (https://github.com/roottusk/vapi/tree/master/Resources/API2_CredentialStuffing).
Question 2
When using the credentials found in API2_CredentialStuffing to attack http://vapi.apisec.ai/vapi/api2/user/login, which three email domain names were compromised?
Question 3
Which of the following is the flag for sending a successful GET request to http://vapi.apisec.ai/vapi/api2/user/details?
Last updated