Penetration testing REST, GraphQL, and gRPC interfaces — OWASP API Security Top 10 and emerging attack vectors for modern API infrastructure.