Free API Security Tools The quickest way to test your APIs for quality, security and conformance

Our OpenAPI editing and API testing tools (API Audit and API Scan) are available directly from our OpenAPI Editor extension in your favorite IDE platforms. Join over 1.5 million fellow users to improve the quality of your API contracts and enhance the security posture of your APIs.

The OpenAPI Editor is available free, and API Audit and API Scan are available on limited free usage (freemium). If you have greater usage requirements, we offer both single-user and team upgrade subscription options. 

OpenAPI (Swagger) Editor Create and edit OpenAPI design files

Create and edit OpenAPI definition files using the free OpenAPI Swagger editor directly in your favorite IDE. Quick and easy navigation and enjoy features such as, Intellisense, Try it (test live endpoints) and Preview features and supports OpenAPI definition files in JSON or YAML format. Also, with a freemium subscription you can lint and audit the OpenAPI file with the API Audit and dynamically scan your API using API Scan. Check out our OpenAPI Editor tutorials.

Install the 42Crunch OpenAPI (Swagger) Editor extension in your favorite IDE now

API Audit Improve the quality of your API definitions

A static analysis tool to check the quality and security of your API definition and conformance with the OpenAPI specification. It provides an instant score out of 100 and offers remediation advice.  Automatic quick-fix and bulk quick-fix options. Fixing security issues at design time greatly enhances the overall security of your API when it comes to the build stage. Video explainer and tutorials.

To activate your free version of API Audit, click on the audit or scan icon/text in the OpenAPI editor tool and register for our Freemium service. 

API Scan Identify security vulnerabilities in your APIs

A dynamic conformance and security tool that tests the API for conformance to the API definition and security vulnerabilities. Stop malformed data and security vulnerabilities sneaking into your code and prevent API attacks such as BOLA, BPLA and other OWASP API Top 10 risks. The free version of API Scan runs locally in your own environment and requires no API file to be uploaded to 42crunch. Video explainer and tutorials

To activate your free version of API scan, click on the audit or Sccan icon/text in the OpenAPI editor tool and register for our Freemium service.

Install the 42Crunch OpenAPI (Swagger) Editor extension in your favorite IDE now

Freemium Limited free usage of our API Testing tools

Our API testing tools are available to IDE users who have installed our OpenAPI Editor extension and registered with us. Registration is free and only requires an email address. Registration is required so we can send you a freemium token that activates your free account. Once registered you can run 100 operation audits and 100 operation scans each month for free. Users with greater usage requirements can upgrade to a paid single-user or team subscription.

More information on Freemium

42Crunch-Quotes-Gradient

One of the best API security testing and assessment tools. It makes it easy for developers to build APIs due to its feature of testing the API against 300+ vulnerabilities in data whether it be at rest or transit.

Gartner-peer-insights

Ready to Learn More?

Developer-first solution for delivering API security as code.