As REST APIs are getting very popular these days, the attackers are riding on the trend and actively targeting the APIs that are accessible. In this talk, we will explore the top techniques and best practices that are tried and true in protecting REST based applications.