from the Detectify Research Labs

Be the first to know when Detectify launches API fuzzing

With our roots in ethical hacking, you know we’re going to develop something that helps you test your public APIs just like a hacker would and stay ahead of attackers.

Sign up to get updates specific to API product announcements

Features planned for beta

Our current ambition is to launch the API security scanner beta in Fall 2021. The beta will look to scan REST APIs and use the following:

  • Postman collection as input
  • Different types of authentication
  • Fuzzing methodology

What vulnerabilities will it look for?

We’re starting with actual vulnerabilities that happen in APIs and automate tests for them:

  • Remote Code Execution (RCE)
  • SQL-injections
  • Server-Side Request-Forgery (SSRF)
  • Misconfigurations