API Security Tutorials
Learn more about how to use the 42Crunch platform and free tools!

OpenAPI Swagger Editor

OpenAPI Swagger Editor Extension in VS Code

In this tutorial we show you how to create a new OpenAPI file in Microsoft Visual Studio Code (VS Code) using the 42Crunch OpenAPI Editor and go through some of the useful features in the editor.

API Security Audit using OpenAPI Swagger Editor Extension in VS Code

Tutorial on how to run the 42Crunch API security audit from the OpenAPI (Swagger) Editor extension in VS Code and how to navigate the report.

42Crunch API Security Platform Overview

API Security Platform Overview

Overview of the 42Crunch API Security platform showing the dashboard, main API Security features, basic navigation and API collections.

API Security Testing API Audit & API Scan

OpenAPI (Swagger) Security Audit on the 42Crunch Platform

Shows how to import the OpenAPI (Swagger) definition file, run the security audit and view the security report.

BitBucket Pipelines API Security Audit Extension

Learn how to add API security Audit extension in the BitBucket Pipelines CI/CD and run the API Audit.

OpenAPI (Swagger) Security Audit Report Explained

Explains the Security Audit Report including the Audit Score, how to navigate the report, the use of filters and how to get remediation advice on each security issue.

Fixing API Security Issues identified in the Audit Report

This tutorial illustrates how to fix issues found in the API security audit and shows you how to iteratively update your OpenAPI definition.

API Security Testing with API Scan

An overview of API Scan, how to generate the security report that detects security misconfigurations between your API and the API definition

API Protection API Protect

API Protect Micro API Firewall

An overview of API protect – a Micro-Firewall that provides runtime API security protection and policy enforcement and how to set it up.

API Protect Micro API Firewall Reports and Troubleshooting

Learn how to read the API Protect reports, view transaction logs, lookup details on specific errors, enable non blocking mode and use the security dashboard.

Ready to Learn More?

Developer-first solution for delivering API security as code.