Products

Pricing

Solutions

Resources

Book demo

See docs

Start free

Home

Akto Academy

Become an expert in API Security

Dive deep into best practices, tools, and strategies, empowering you to secure APIs effectively, safeguard data, and fortify your digital assets.

All Topics

What all courses are available?

These courses are designed to build your knowledge on all things API security. Learn by exploring and testing around on Akto's interactive platform.

Mastering APIs: A Hands-On Guide

Comprehensive insights and practical skills for effectively utilizing and securing APIs

Know more

Start

GitHub Copilot for Security

Learn to identify, prevent, and secure your applications against SSRF attacks

Know more

Start

Security Misconfigurations

A guide to addressing common configuration flaws that can leave your systems vulnerable to attacks

Coming soon

Insecure direct object references

Understand how to prevent unauthorized access to sensitive data through access control

Coming soon

Business logic testing

Gain hands-on experience in validating critical application processes, ensuring functionality and reliability

Coming soon

Client side request forgery

Learn to detect, prevent, and protect your web apps from CSRF, ensuring data integrity and user safety.

Coming soon

Cross-origin resource sharing

Learn to configure, protect, and manage CORS policies to ensure secure data sharing across domains

Coming soon

Broken Authentication

Understand how to discover vulnerabilities, and safeguard your APIs against unauthorized access and data breaches

Coming soon

Sensitive data exposure

This course covers detection, mitigation, and prevention strategies to secure data transmission

Coming soon

Modules

What will you learn?

Whether you are a beginner to API security or a pro, we have designed a curriculum that covers all you need to identify, monitor, and secure APIs

Course 1

Mastering APIs: A Hands-On Guide

Comprehensive insights and practical skills for effectively utilizing and securing APIs

7 modules

Module 1

Introduction to API

What is API?

Types of APIs

REST API

GraphQL

JSON-RPC

XML-RPC

SOAP API

REST vs SOAP

GraphQL vs REST

Module 2

HTTP Methods

GET Method

POST Method

PUT Method

DELETE Method

GET vs POST

PUT vs POST

Module 3

Status Code

HTTP Status Code

200 Status Code - OK

201 Status Code - Created

204 Status Code - No Content

301 Status Code - Moved Permanently

302 Status Code - Found

304 Status Code - Not Modified

307 Status Code - Temporary Redirect

400 Status Code - Bad Request

401 Status Code - Unauthorized

403 Status Code - Forbidden

404 Status Code - Not Found

500 Status Code - Internal Server Error

502 Bad Gateway

503 Status Code - Service Unavailable

504 Gateway Timeout

Module 4

GraphQL

GraphQL Authentication and Authorization

GraphQL Introspection

GraphQL Query

GraphQL Mutation

GraphQL Pagination

GraphQL Subscription

GraphQL Fragment

Module 5

API documentation & Swagger

API Documentation

Swagger for API Documentation

OpenAPI Specification

Module 6

Security & best practices

Authentication

Authorization

Course 2

GitHub Copilot for Security

Comprehensive insights and practical skills for effectively utilizing and securing APIs

1 module

Module 1

GitHub Copilot for Security

Detect Insecure Dependencies using GitHub Copilot

Detect SQL Injection Using Github Copilot

Ensure Data Encryption using Github Copilot

Validate Input Sanitization using Github Copilot

Review Authentication Mechanism using Github Copilot

Check for Secure Communication Protocols using Github Copilot

How Github Copilot Helps in Auditing Logging Practices

Enforce Principle of Least Privilege with GitHub Copilot

Secure File Uploads with GitHub Copilot

Find CSRF Vulnerabilities with GitHub Copilot

Detect Hardcoded Secrets with GitHub Copilot

Assess CORS Configuration with GitHub Copilot

Evaluate Session Management with GitHub Copilot

Evaluating Third-Party Service Integrations Security with GitHub Copilot

Conduct a Security Assessment of REST API Endpoints with GitHub Copilot

Recommended Security Headers for Web Applications with GitHub Copilot

Check for Proper Error Handling with GitHub Copilot

Review Application Configuration for Security Enhancements with GitHub Copilot

Generate a Report Identifying Critical Vulnerabilities with GitHub Copilot

Secure Patch for SQL Injection and XSS in JavaScript with GitHub Copilot