In this session, 42Crunch technical expert, Andy Wright, walks through how to perform a Security Audit and a Conformance Scan of your API Contract. He immediately builds a security report and calculates an audit score for each API he analyzes based on the OpenAPI annotations in the API definition. This audit score reflects the risk associated with exposing the APIs, internally and externally.
Overview of the 42Crunch API Security platform showing the dashboard, main API Security features, basic navigation and API collections.
Shows how to import the OpenAPI (Swagger) definition file, run the security audit and view the security report.
Learn how to add API security Audit extension in the BitBucket Pipelines CI/CD and run the API Audit.
Explains the Security Audit Report including the Audit Score, how to navigate the report, the use of filters and how to get remediation advice on each security issue.
This tutorial illustrates how to fix issues found in the API security audit and shows you how to iteratively update your OpenAPI definition.
An overview of API Scan, how to generate the security report that detects security misconfigurations between your API and the API definition
An overview of API protect – a Micro-Firewall that provides runtime API security protection and policy enforcement and how to set it up.
Learn how to read the API Protect reports, view transaction logs, lookup details on specific errors, enable non blocking mode and use the security dashboard.
In this tutorial we show you how to create a new OpenAPI file in Microsoft Visual Studio Code (VS Code) using the 42Crunch OpenAPI Editor and go through some of the useful features in the editor.
Tutorial on how to run the 42Crunch API security audit from the OpenAPI (Swagger) Editor extension in VS Code and how to navigate the report.
Ready to Learn More?
Developer-first solution for delivering API security as code.