Have you ever wondered what the mysterious world of Blockchain is all about? Maybe you have only heard about it in regards to Bitcoin. Blockchain is much more than just a cryptocurrency financial system. With Blockchain, we can push the boundaries of what is possible within the realm of networking and cybersecurity. Join me as we launch a digital adventure into the world of Blockchain based APIs.
Who is this course for?
This course is for any hacker or security professional regardless of industry experience and job title. Maybe this is the key to unlocking a new position within your organization or advancing an already established skill-set. The more practical experience we are exposed to, the greater our skills as a security professional become. Even if you don’t know anything about, or are new to, Smart contracts, programming, hacking and Blockchain, this course will give you a great foundation to start your journey into the world of Blockchain.
What tools will you use?
Module 0
Before the course
An introductory module.
Getting started
When approaching Blockchain technologies, it’s always a great idea to organize your workspace in a manner that promotes a positive learning environment. Efficiency is key when establishing your space, just keep the ‘less is more’ mindset when designing your area. Within this module, we will be discussing the installation steps for all of our tools and environments we will be using for this course.
API analysis
In this module, we will be analyzing our test case APIs with Coinpath and Contract Fuzzer to discover potential vulnerabilities.
Exploiting vulnerabilities found
In this module, we will be exploiting the information we have gathered in a variety of ways with a varied set of tools. We will explore some, but not all, of the potential impact these vulnerabilities can have in regards to the API.
Wrap up and next steps
In this module, we will be discussing how this newly gained knowledge can translate into making you a better security professional. Whether you are part of a Red Team or a lone pentester, being able to compromise blockchain-based APIs is a great skill set to enhance your abilities.
Discuss new technologies to look for in the future in regards to blockchain API/OS and how they could be implemented and exploited.
Final exam
Comprehensive exam covering overall methods and functionality of framework. Matching outputs to the corresponding tools. T/F questions on modules and libraries.
Quiz: 25 questions
Who is this course for?
This course is for any hacker or security professional regardless of industry experience and job title. Maybe this is the key to unlocking a new position within your organization or advancing an already established skill-set. The more practical experience we are exposed to, the greater our skills as a security professional become. Even if you don’t know anything about, or are new to, Smart contracts, programming, hacking and Blockchain, this course will give you a great foundation to start your journey into the world of Blockchain.
What tools will you use?
- Kali Linux or Ubuntu
- POSTMAN
- Coinpath
- ContractFuzzer
- What is a Blockchain API?
- Current implementation roles in technology.
- POSTMAN – installation and setup.
- Compromising blockchain APIs.
- Learn to utilize blockchain API for analysis.
- Learn to use new tools and methods to scrutinize blockchain based APIs.
- Learn API analysis for tracking API transactions.
- Learn to compromise blockchain based API from a different angle.
Module 0
Before the course
An introductory module.
- Basic system and Environment setup
- Kali Linux, Ubuntu bare metal or VM
Getting started
When approaching Blockchain technologies, it’s always a great idea to organize your workspace in a manner that promotes a positive learning environment. Efficiency is key when establishing your space, just keep the ‘less is more’ mindset when designing your area. Within this module, we will be discussing the installation steps for all of our tools and environments we will be using for this course.
- Postman installation and setup
- Coinpath setup
- Contract Fuzzer installation and setup
- Test case APIs we will use throughout this course
- Exercise explanation
API analysis
In this module, we will be analyzing our test case APIs with Coinpath and Contract Fuzzer to discover potential vulnerabilities.
- Identify vulnerabilities within the test case API.
- Scrutinize output and classify the potential vulnerabilities.
- Exercise explanation.
Exploiting vulnerabilities found
In this module, we will be exploiting the information we have gathered in a variety of ways with a varied set of tools. We will explore some, but not all, of the potential impact these vulnerabilities can have in regards to the API.
- Exploiting information gathered from test API.
- Impact of vulnerabilities.
- Explore impact to blockchain API driven supply chain.
- Exercise explanation.
Wrap up and next steps
In this module, we will be discussing how this newly gained knowledge can translate into making you a better security professional. Whether you are part of a Red Team or a lone pentester, being able to compromise blockchain-based APIs is a great skill set to enhance your abilities.
Discuss new technologies to look for in the future in regards to blockchain API/OS and how they could be implemented and exploited.
Final exam
Comprehensive exam covering overall methods and functionality of framework. Matching outputs to the corresponding tools. T/F questions on modules and libraries.
Quiz: 25 questions
Для просмотра скрытого содержимого необходимо Войти или Зарегистрироваться.