Secure APIs you own this product

Design, build, and implement
José Haro Peralta
  • MEAP began May 2024
  • Publication in Summer 2025 (estimated)
  • ISBN 9781633436633
  • 325 pages (estimated)
  • printed in black & white

pro $24.99 per month

  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose one free eBook per month to keep
  • exclusive 50% discount on all purchases

lite $19.99 per month

  • access to all Manning books, including MEAPs!

team

5, 10 or 20 seats+ for your team - learn more


Look inside
Practical, battle-tested techniques to recognize and prevent attacks on your APIs.

Hackers know how important your APIs are, and they also know how to find the weak spots in your API security. As a result, APIs have become principal vectors of attack against apps and sites. Here’s the good news! There are effective, tested strategies for finding vulnerabilities, plugging security gaps, and building APIs that are secure by design, as well as a powerful new ally--generative AI.

Secure APIs: Design, build, and implement shows you reliable methods you can use to counter cracks, hacks, and attacks on your internal and external APIs. In this innovative new book, you’ll learn:

  • Addressing the OWASP Top 10 API security vulnerabilities
  • API security by design
  • Zero-trust security
  • Automated API testing strategies
  • Observability and monitoring for threat detection

Written for developers and architects, Secure APIs: Design, build, and implement shows you how to create and deploy APIs that are resistant to the most common security threats. Author Jose Peralta illustrates each vulnerability with extended code samples and shows you exactly how to mitigate them in your own APIs. You’ll find insights into emerging AI-powered security threats, along with tips and patterns for using LLMs in your own security testing.

about the book

Secure APIs: Design, build, and implement shows you modern approaches to uncovering and stopping threats to your APIs, including the OWASP Top 10 API security vulnerabilities, architectural weaknesses, and common mistakes for authentication and authorization. Throughout the book, you’ll find techniques for testing system security, identifying data leak vectors, and discovering insufficient constraints.

You’ll explore dozens of practical examples based on real-world APIs that range from e-commerce to ride-sharing. Learn how to ensure that your organization is aligned with the need for API security, and shift left to bake the essential principles of secure API design in at the earliest stages of development. Plus, patterns and advice for observability ensure you can spot intrusions early and know what to do in the event of an attack.

about the reader

For software developers and architects, cybersecurity professionals and QA engineers. Examples are in Python.

about the author

José Haro Peralta is a consultant, instructor, and author of Microservice APIs. He’s also the founder of microapis.io and apithreats.com.

choose your plan

team

monthly
annual
$49.99
$499.99
only $41.67 per month
  • five seats for your team
  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose another free product every time you renew
  • choose twelve free products per year
  • exclusive 50% discount on all purchases
  • Secure APIs ebook for free

choose your plan

team

monthly
annual
$49.99
$499.99
only $41.67 per month
  • five seats for your team
  • access to all Manning books, MEAPs, liveVideos, liveProjects, and audiobooks!
  • choose another free product every time you renew
  • choose twelve free products per year
  • exclusive 50% discount on all purchases
  • Secure APIs ebook for free