How useful would it be to understand RESTful APIs for bug bounties? I’ve been reading up on these and it would seems like they are quite prevalent. Looks like a possible avenue of attack.
It would be very useful.
oh totally worth it if your area is going to be around mobile or web applications as for modern web-sites, web-apps and mobile-apps a LOT of what goes on is via requests to REST based services. Also dig into GraphQL (it’s a bit like if a REST service and SQL had a baby)
Rest services represent a large attack surface, and a critical part of most modern applications. If you watch the network traffic you will normally see a lot of requests being made to services.