Checkmarx API Safety was launched to empower the partnership between the developer and AppSec groups of a company and is delivered as a part of the Checkmarx One software safety platform.
As a result of APIs are used to entry information and to name software performance, they’re simply uncovered however troublesome to defend which creates a big and rising assault floor, based on the corporate.
“Assaults on purposes are shifting to concentrate on APIs, and the tempo of assaults is rising. API abuses and exploits are a standard assault class that may end up in information breaches. DevSecOps groups are focusing consideration on the necessity for improved API testing in growth. To determine the optimum strategy to API testing, they wish to a mixture of conventional instruments (reminiscent of static AST [SAST] and dynamic AST [DAST]) and rising options targeted particularly on the necessities of APIs,” based on Gartner’s Hype Cycle for Utility Safety 2022 report.
Checkmarx API Safety affords the automated identification of API endpoints with out requiring API definition or registration, the flexibility to find newly created or up to date APIs because the supply code is checked in or compiled by builders, unknown API identification, API-centric remediation, and a single software safety testing resolution for the whole software.
The platform offers AppSec groups with an up-to-date view into their complete API assault floor, eliminating the issue of shadow and zombie APIs, based on Checkmarx.
Extra particulars on the brand new platform can be found right here.