Two-Project Series

Encrypt API Traffic and Rate-limit Data Requests you own this product

prerequisites
basics of Ubuntu and VirtualBox • testing APIs via Postman
skills learned
encrypting traffic • reverse proxy with NGINX
Sashank Dara
2 weeks · 6-8 hours per week average · BEGINNER
filed under

In this series of liveProjects, you’ll step into the role of a security engineer working for blog aggregator site ReadBytes. Your company takes news, blogs, and articles from across the web and condenses them into one feed for your clients. These aggregated articles can be accessed via web API. In order to improve the security of ReadBytes, your challenge in these liveProjects is to both encrypt website traffic to your website and provide a rate limit on the number of API requests per user. To do this, you’ll add encryption and rate limiting by using popular open-source web server NGINX.

These projects are designed for learning purposes and are not complete, production-ready applications or solutions.

here's what's included

Project 1 Encrypt API Traffic for Privacy

In this liveProject, you’ll take on the challenge of encrypting web traffic to the ReadBytes news aggregator site. ReadBytes uses a REST API to distribute its content, and you’ll encrypt traffic with the popular open-source web server NGINX. You’ll inspect HTTP traffic, implement HTTPS protocols, and then inspect the HTTPS traffic again.

$29.99 $19.99
add to cart
Project 2 Rate-limit API Data Use

In this liveProject, you’ll step into the shoes of a security engineer working for news aggregator ReadBytes. Your site uses a REST API to distribute its content, which is vulnerable to the ever-increasing risks of attacks like brute forcing and credential stuffing. Your manager wants you to provide rate limiting of requests to help secure your API. To do this, you’ll first perform your own brute force attack, then implement and test a rate limiter.

$29.99 $19.99
add to cart

project author

Sashank Dara
Sashank Dara, PhD, is a seasoned cybersecurity technologist and expert. He has over 17 years of extensive experience in cybersecurity R&D. He got his PhD in cybersecurity from IIIT-Bangalore in the area of applied cryptography and threat intelligence. He is co-inventor of five U.S. patents (and 3 IETF drafts) in the areas of cloud, SDN, and NFV security. He is a trusted information security consultant and adviser for top companies in EdTech, IT/ITes, academia, and real estate. Dara has published more than a dozen research papers at IEEE, LNCS conferences in the areas of cloud security, privacy, cryptography, and threat intelligence. He is a prolific speaker at security conferences and invited talks. He was a consultant advisor with Manipal Global Education Services for its cybersecurity programs. He was security technology and strategy advisor for security startups including Appknox, Haltdos, and SecurityJourney.com. Dara is currently the CTO and co-founder of Seconize, an award-winning cybersecurity startup pioneering a cyber risk and compliance management SaaS product suite.

Prerequisites

This liveProject series is for security operations engineers who know the basics of REST APIs. To begin this liveProject, you will need to be familiar with the following:


TOOLS
  • Basics of Ubuntu
  • Basics of VirtualBox
  • Basics of web server NGINX
  • Testing APIs via Postman
  • Basics of Docker
TECHNIQUES
  • Basic debugging
  • Security testing

you will learn

In these liveProjects, you’ll learn the essentials of encryption and rate limiting for REST APIs.


  • Understanding the real-world deployment of REST APIs via reverse proxy behind NGINX
  • Deploying the reference implementation given for the ReadBytes REST API
  • Learning the basics of encrypting traffic and implementing it
  • Learning the basics of rate limiting traffic and implementing it

features

Self-paced
You choose the schedule and decide how much time to invest as you build your project.
Project roadmap
Each project is divided into several achievable steps.
Get Help
While within the liveProject platform, get help from other participants and our expert mentors.
Compare with others
For each step, compare your deliverable to the solutions by the author and other participants.
book resources
Get full access to select books for 90 days. Permanent access to excerpts from Manning products are also included, as well as references to other resources.
includes 2 liveProjects
liveProject $27.99 $39.99 self-paced learning
RECENTLY VIEWED