December 7, 2021 11:00 AM
Workshop: API Threats Simulation With Open-Source Tools
Do you still think that WAFs and API gateways are effective in protecting exposed APIs against emerging threats? During this workshop Wesley Thijs, CEO at The XSS Rat, demonstrates a variety of the attacks that can easily bypass modern WAFs and hit exposed workloads. So how should you evaluate the effectiveness of your security toolchain and test if they can mitigate API-specific threats?
Topics covered in this workshop:
- What is the difference in attacks against REST, SOAP, graphQL, gRPC APIs today?
- How to simulate API-specific attacks with open source tools?
- How to evaluate an existing security toolchain in protecting your APIs?
Lear more:
Our speakers:

Chief Executive Officer at The XSS Rat
As an experienced OSCP Certified Software Test Consultant and with multiple bug bounties to his name, Wesley has a demonstrated history of working in the information technology and services industry. With a focus on quality assurance but being skilled in general pen testing, Python, Java, Automation, and performance testing he has an extensive skill set that serves him well in a job as a Quality Assurance Team Lead and an owner of his own startup.