From the course: Ethical Hacking: Hacking Web Servers and Web Applications
Join today to access over 24,900 courses taught by industry experts.
Web access APIs
From the course: Ethical Hacking: Hacking Web Servers and Web Applications
Web access APIs
- [Instructor] Many organizations now deploy web-based micro services to get or send information across the web. These work by accessing a webpage with URL parameters. One of the tools for building such services is CherryPy. We'll be using another library, which we can use for one-time password multifactor authentication, called PyOTP. Multifactor authentication is an important means of defeating unauthorized access to our web applications. Let's see how we can build an API on Hydra using CherryPy. Firstly, we install the CherryPy and PyOTP frameworks using pip. I already have them installed, but let's run the commands anyway. Pip three, install CherryPy. And pip three install PyOTP. Okay, we can now build our API. I've used the PyOTP demonstrator, so let's check it out. Nano OTP.Py. We import the libraries and then define an API called check within the OTP class. We've just defined one API endpoint, but we could…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
Elements of web-based applications4m 44s
-
(Locked)
Introduction to web servers4m 27s
-
(Locked)
Dissecting the HTTP/HTTPS protocol6m 39s
-
(Locked)
Moving on to WebSockets2m
-
(Locked)
Looking at the Google QUIC protocol3m 56s
-
(Locked)
Understanding cookies1m 56s
-
(Locked)
Introducing HTML2m 29s
-
(Locked)
Visiting OWASP4m 6s
-
(Locked)
Web access APIs3m 38s
-
-
-
-
-
-
