An Integrated Approach to Scanning APIs with DAST

Logo
Presented by

Suha Akyuz, Senior Application Security Manager, Invicti Security

About this talk

APIs have progressed from being add-ons to a core application to become the fundamental building blocks of modern software architecture. Many companies have had an API security incident in the past 12 months including the recent Optus hack. And yet, surprisingly many organizations are still overlooking or not realizing that the API part of the web application attack surface can be covered when planning and executing their AppSec programs. Join Invicti Senior AppSec Manager Suha Akyuz as he discusses the practical challenges of API vulnerability testing, technical solutions to overcome them, and best practices to make it all work in a modern web development pipeline. You will also learn: - Why API vulnerability testing in modern development pipelines runs into so many obstacles - How advances in AppSec technologies have made it possible to automatically test APIs in combination with the rest of your web attack surface, allowing you to save on valuable resources - What best practices you can follow to make API security testing a routine and efficient part of your secure SDLC There is no question that APIs are difficult to test. If undocumented API endpoints make it into production, they can quietly increase the overall attack surface, exposing sensitive data and critical functionality directly to attackers. Join the webinar to learn practical ways to make API security a routine part of a successful web application security program.
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (28)
Subscribers (1887)
Invicti Security is transforming the way web applications are secured. An AppSec leader for more than 15 years, Invicti enables organizations in every industry to continuously scan and secure all of their web applications and APIs at the speed of innovation. Invicti is headquartered in Austin, Texas, and serves more than 3,500 organizations of all sizes all over the world. For more information, visit our website invicti.com.