We have arranged the tutorials into the following groups<\/p>\n
- \n
- API Security Platform Overview<\/a><\/li>\n
- OpenAPI Contracts <\/a>\n
- \n
- OpenAPI Editor<\/a> – Create and edit OpenAPI definition files \/ OpenAPI contracts<\/li>\n
- API Capture<\/a> – Autogenerate OpenAPI contracts<\/li>\n<\/ul>\n<\/li>\n
- API Security Testing <\/a>– Build security in your API during the development lifecycle and test for security issues before pushing live in a production environment (Shift-Left).\n
- \n
- API Security Testing in VS Code<\/a><\/li>\n
- API Security Testing in CI\/CD<\/a><\/li>\n
- API Security Testing in the 42Crunch API Security Platform<\/a><\/li>\n<\/ul>\n<\/li>\n
- API Runtime Threat Protection<\/a> – Protect your APIs in production (Shield-Right)<\/li>\n<\/ul>\n\t\t
\n\t\t\tAPI Security Platform\n\t\t\t\t\t\t\t\t\t\t\tOverview\n\t\t<\/h2>\n\t
A quick overview of the 42Crunch API security platform explaining our API security testing tools (API Audit<\/a> & API Scan<\/a>) and API runtime threat protection tool (API Protect<\/a>)<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
![\"AcademyTutorialThumb_1024x585px\"](\"https:\/\/staging2022.42crunch.com\/wp-content\/uploads\/2020\/06\/AcademyTutorialThumb_1024x585px.png\" "\\"AcademyTutorialThumb_1024x585px\\"")
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Security Platform Overview\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Overview of the 42Crunch API Security platform showing the dashboard, main API Security features, basic navigation and API collections. <\/p>\n\t\t\n\t\t
\n\t\t\tOpenAPI Swagger Defintion Files |\n\t\t\t\t\t\t\t\t\t\t\tOpen API Contracts\n\t\t<\/h2>\n\t
How to install, create \u00a0and edit OpenAPI definition files using the 42Crunch OpenAPI Editor extensions in IDE and autogenerate OpenAPI contracts using our API Capture<\/a> tool.<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tOpenAPI Swagger Editor Extension in VS Code\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
In this tutorial we show you how to create a new OpenAPI file in Microsoft Visual Studio Code (VS Code) using the 42Crunch OpenAPI Editor and go through some of the useful features in the editor.<\/p>\n\t\t\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAutomatic Generation of OpenAPI contracts with API Capture\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Tutorial on how to use API Capture in order to generate OpenAPI contracts automatically. Helping to save significant time and money compared to creating them manually.<\/p>\n\t\t\n\t\t
\n\t\t\tAPI Security Testing\n\t\t<\/h2>\n\t
How to run API Audit<\/a> (lint and test your OpenAPI contract for security vulnerabilities and conformance to the OpenAPI specification) and API Scan<\/a> (dynamic security testing of your API – checking for security vulnerabilities and conformance to the OpenAPI definition file)<\/p>\n\t\t
\n\t\t\tAPI Security Testing in VS Code IDE\n\t\t<\/h3>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Security Audit using OpenAPI Swagger Editor Extension in VS Code\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Tutorial on how to run the 42Crunch API security audit from the OpenAPI (Swagger) Editor extension in VS Code and how to navigate the report.<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Security & Conformance Scan using OpenAPI Swagger Editor Extension in VS Code\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Tutorial on how to run the 42Crunch API security Scan from the OpenAPI (Swagger) Editor extension in VS Code and how to navigate the results.<\/p>\n\t\t\n\t\t
\n\t\t\tAPI Security Testing in CI\/CD\n\t\t<\/h2>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Security Testing in GitHub Actions\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Learn how to perform API Security testing in GitHub Actions using 42crunch API Audit & Scan testing tools.<\/p>\n\t\t\n\t\t
\n\t\t\tAPI Security Testing in the API Security Platform\n\t\t<\/h2>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tOpenAPI (Swagger) Security Audit on the 42Crunch Platform\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Shows how to import the OpenAPI (Swagger) definition file, run the security audit and view the security report. <\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tOpenAPI (Swagger) Security Audit Report Explained\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Explains the Security Audit Report including the Audit Score, how to navigate the report, the use of filters and how to get remediation advice on each security issue.<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tFixing API Security Issues identified in the Audit Report\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
This tutorial illustrates how to fix issues found in the API security audit and shows you how to iteratively update your OpenAPI definition.<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Security Testing with API Scan\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
An overview of API Scan, how to generate the security report that detects security misconfigurations between your API and the API definition<\/p>\n\t\t\n\t\t
\n\t\t\tAPI Runtime Threat Protection\n\t\t<\/h2>\n\t
An overview of our Micro API Firewall that protects APIs in production and how to read the reports<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Protect Micro API Firewall\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
An overview of API protect – a Micro-Firewall that provides runtime API security protection and policy enforcement and how to set it up.<\/p>\n\t\n\t\t\t\t\n\t\t\t\t
\n\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\n\t\t\t\t\t\t\t\t\t\t\t\t\t\tAPI Protect Micro API Firewall Reports and Troubleshooting\t\t\t\t\t\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t<\/h3>\n
Learn how to read the API Protect reports, view transaction logs, lookup details on specific errors, enable non blocking mode and use the security dashboard.<\/p>\n\t\t\n
\n\t\tReady to Learn More?\n\t<\/h2>\n\t
- API Security Testing in CI\/CD<\/a><\/li>\n
- API Capture<\/a> – Autogenerate OpenAPI contracts<\/li>\n<\/ul>\n<\/li>\n
- OpenAPI Contracts <\/a>\n