Chapter 8: Assessing AWS API Gateway

AWS API Gateway acts as a gateway to applications that can host various types of data. The data they host varies; however, what does not is the fact the some of the data may be considered attractive to unauthorized personnel – such as the locations of S3 buckets or an overly permissive header. This chapter will discuss what AWS API Gateway is, and how you can learn to inspect API calls and manipulate API calls with open source tools.

Understanding how AWS APIs work will allow us to grow our mindset outside of the Linux Terminal and into the browser and understand the basics of web services and how to interact with them. While going through this chapter, remember that quite a few of the techniques in it can ...

Get AWS Penetration Testing now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.