Webinars

OWASP API Security Top 10

dmitry sotnikov

Presented by:

Dmitry Sotnikov 
Chief Product Officer

In recent years, large reputable companies such as Facebook, Google and Equifax have suffered major data breaches that combined exposed the personal information of hundreds of millions of people worldwide. The common vector linking these breaches – APIs. The scale and magnitude of these breaches are the reason API security has been launched into the forefront of enterprise security concerns – now forcing us to rethink the way we approach API security as a whole.

OWASP Top 10 project has for a long time been the standard list of top vulnerabilities to look for and mitigate in the world of web applications. APIs represent a significantly different set of threats, attack vectors, and security best practices. This caused the OWASP community to launch OWASP API Security project earlier this year.

In this session we’ll discuss:

  • What makes API Security different from web application security
  • The OWASP API Security Top 10
  • Real world breaches and mitigation strategies for each of the risks

Webinar Follow-up

Hope you enjoyed the webinar! Below you can download the slide deck, visit our blog 
for full Q&A and learn more about 42Crunch! 

 OWASP API Security 
Top 10 Slide Deck

Download

OWASP API Security 
Top 10 Q&A Blog

Read the Blog

OWASP API Security 
Top 10 Cheat Sheet

Download
42Crunch Platform: Sign up for a free forever account now and start securing your APIs!
Sign Up

Resources

Want to learn more? Here are some resources to help you out.

Free Tools

Looking to make OpenAPI editing easier in VS Code? Or want to check how secure your API is? Check out our free tools.

Get the Tools!

API Security Top 10

Learn more about the OWASP API Security Top 10, how 42Crunch can help, and download our cheat sheet!

Learn More

White Paper

Download our white paper - API Security in the Enterprise: How a DevSecOps Approach Delivers Reliable API Security. 

Download

Ready to Get Started?

Developer-first solution for delivering API security as code.