How I could exploit the CVE-2022-1388, F5 BIG IP iControl Authentication bypass to RCE - SecurityFlow
API Gateway - NGINX
Core Impact Issues Latest Exploit for F5 BIG-IP iControl REST Vulnerability | Core Labs
F5 Released Hotfixes for BIG-IP and iControl REST Vulnerabilities
GitHub - F5Networks/f5-icontrol-rest-python: Generic python library used by the F5 SDK and other F5 projects to communicate with BIG-IP® via the REST API
HYCU Management Pack for F5 BIG-IP
Lab 1.2: REST API Authentication & 'example' Templates — F5 Programmability Training 2.0 documentation
Creating a REST API - WSO2 Enterprise Integrator Documentation
Lab 1.7 – REST API Transactions — F5 Automation & Orchestration - Introduction 2.0 documentation
API Protection Concepts
Lab 2.3: Create iApp Deployments using the REST API — F5 Programmability Training 2.0 documentation
F5 iControl REST Endpoint Authentication Bypass Technical Deep Dive – Horizon3.ai
Lab 2.1 - Interact with a REST Extension
F5 iWorkflow 201 - Episode #01 - Introducing the iControl REST API - YouTube
Rest API
Lab 2.1 - Interact with a REST Extension
3 Steps to a Custom F5 BIG-IP Workflow in vRealize Orchestrator
Active Exploitation of F5 BIG-IP iControl REST CVE-2022-1388 | Rapid7 Blog
Lab 2.2 - Edit an iControl REST Resource via ToC
Lab 2.3: Create iApp Deployments using the REST API — F5 Programmability Training 2.0 documentation
F5 REST API - Getting started - Balanced
Issue 126: F5 iControl REST API under attack, Regexploit, Ford's API security talk recording - API Security News
