Update references.md

Added 5 walkthroughs articles and ParaBank vulnerable lab

docs/content/references.md

@@ -75,6 +75,7 @@ Here you can find a variaty of resources to help you out on the API security pat
 - [KONTRAs OWASP Top 10 for API](https://application.security/free/owasp-top-10-API)
 - [Vulnerable API with Laravel App](https://github.com/InsiderPhD/Generic-University)
 - [c{api}tal CTF](https://www.capital-ctf.com/)
+- [ParaBank](https://github.com/parasoft/parabank)
 
 ## Writeups
 - [Facebook Group Members Disclosure](https://spongebhav.medium.com/facebook-group-members-disclosure-e53eb83df39e)
@@ -96,6 +97,11 @@ Here you can find a variaty of resources to help you out on the API security pat
 - [F5 BIG-IP and iControl REST Vulnerabilities and Exposures](https://www.rapid7.com/blog/post/2022/11/16/cve-2022-41622-and-cve-2022-41800-fixed-f5-big-ip-and-icontrol-rest-vulnerabilities-and-exposures/)
 - [How Spoutible’s Leaky API Spurted out a Deluge of Personal Data](https://www.troyhunt.com/how-spoutibles-leaky-api-spurted-out-a-deluge-of-personal-data/)
 - [Forging signed commits on GitHub](https://iter.ca/post/gh-sig-pwn/)
+- [crAPI walkthrough using AI](https://zerodayhacker.com/crapi-walkthrough-using-ai/)
+- [ParaBank walkthrough](https://zerodayhacker.com/parabank-walkthrough/)
+- [c{api}tal walkthrough](https://zerodayhacker.com/capital-walkthrough/)
+- [vAPI walkthrough](https://zerodayhacker.com/vapi-walkthrough/)
+- [DVGA walkthrough](https://zerodayhacker.com/dvga-walkthrough/)
 ### BOLA / IDOR
 - [Cracking Encrypted Credit Card Numbers Exposed By API](https://infosecwriteups.com/cracking-encrypted-credit-card-numbers-exposed-by-api-977c6f7b996f)
 - [What is BOLA? 3-digit bounty from Topcoder](https://infosecwriteups.com/what-is-bola-3-digit-bounty-from-topcoder-a25e7fae0d64)