Checkmarx API Safety was launched to empower the partnership between the developer and AppSec groups of a corporation and is delivered as a part of the Checkmarx One software safety platform.
As a result of APIs are used to entry information and to name software performance, they’re simply uncovered however troublesome to defend which creates a big and rising assault floor, based on the corporate.
“Assaults on purposes are shifting to concentrate on APIs, and the tempo of assaults is rising. API abuses and exploits are a typical assault class that may end up in information breaches. DevSecOps groups are focusing consideration on the necessity for improved API testing in growth. To determine the optimum method to API testing, they need to a mixture of conventional instruments (comparable to static AST [SAST] and dynamic AST [DAST]) and rising options targeted particularly on the necessities of APIs,” based on Gartner’s Hype Cycle for Software Safety 2022 report.
Checkmarx API Safety presents the automated identification of API endpoints with out requiring API definition or registration, the power to find newly created or up to date APIs because the supply code is checked in or compiled by builders, unknown API identification, API-centric remediation, and a single software safety testing resolution for all the software.
The platform gives AppSec groups with an up-to-date view into their complete API assault floor, eliminating the issue of shadow and zombie APIs, based on Checkmarx.
Extra particulars on the brand new platform can be found right here.