Chapter 8: Assessing AWS API Gateway

AWS API Gateway acts as a gateway to applications that can host various types of data. The data they host varies; however, what does not is the fact the some of the data may be considered attractive to unauthorized personnel – such as the locations of S3 buckets or an overly permissive header. This chapter will discuss what AWS API Gateway is, and how you can learn to inspect API calls and manipulate API calls with open source tools.

Understanding how AWS APIs work will allow us to grow our mindset outside of the Linux Terminal and into the browser and understand the basics of web services and how to interact with them. While going through this chapter, remember that quite a few of the techniques in it ...

Get AWS Penetration Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.