FastAPI

Prerequisites & Requirements

• Basic understanding of web applications and HTTP requests
• Knowledge of JWT (JSON Web Tokens) and authentication mechanisms
• Understanding of URL encoding and query parameter manipulation
• Experience with Python FastAPI and JavaScript/Node.js
• Familiarity with SSRF (Server-Side Request Forgery) vulnerabilities

What will you learn?

• How to analyze source code to identify vulnerabilities
• URL injection techniques to bypass frontend restrictions
• JWT token manipulation and forging
• Server-Side Request Forgery exploitation
• Query parameter pollution and injection attacks

Tools

• Burp Suite or similar web proxy
• Python for JWT token generation
• Webhook.site or similar request capture service
• Text editor for source code analysis