API Security Tools Software

AWS WAF helps you protect against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. AWS WAF is a web application firewall that helps protect web applications from attacks by allowing you to configure rules that allow, block, or monitor (count) web requests based on conditions that you define. These conditions include IP addresses, HTTP headers, HTTP body, URI strings, SQL injection and cross-site scripting.

Salt Security protects the APIs that form the core of every modern application. Its patented API Protection Platform combines the power of cloud-scale big data and time-tested ML/AI to detect and prevent API attacks. By correlating activities across millions of APIs and users over time, Salt delivers deep context with real-time analysis and continuous insights for API discovery, attack prevention, and shift-left practices. Deployed in minutes and seamlessly integrated within existing systems, the Salt Security platform gives customers immediate value and protection, so they can innovate with confidence and accelerate their digital transformation initiatives.

Beagle Security is a SaaS-based web application penetration testing tool that helps you to identify vulnerabilities on your web apps & APIs before hackers exploit them. Beagle Security analyzes your web application by applying several penetrating testing procedures to understand how deep it can be hacked. A detailed report is provided explaining the open vulnerabilities and how they can be addressed effectively. With native integrations connecting all major DevOps pipeline tools, you can reduce the cost and complexity associated with managing web application security by adopting a DevSecOps culture.

Google Apigee Sense protects your APIs from unwanted request traffic, including attacks from malicious clients. Apigee Sense analyzes API request traffic, identifying patterns that might represent unwanted requests. Using this analysis, you can identify clients making unwanted requests, then take action to allow, block, or flag those requests.

Wallarm API Security Platform is modern API Protection Built for modern challenges. Whether you need to protect your brand-new cloud-native APIs or your legacy web apps, Wallarm API Security platform delivers all the capabilities to secure your business against emerging threats. Built by security practitioners for practitioners, Wallarm products provide robust protection for APIs, apps, and serverless workloads running in cloud-native environments.

The APIsec security testing platform discovers the most serious API vulnerabilities that lead to data theft and compromise. APIsec automatically creates and runs thousands of attack playbooks, custom-generated for each unique API, to find security vulnerabilities and data logic flaws BEFORE production. The zero-touch deployment model requires no source code access, no agents, and nothing inline. APIsec runs at the speed of DevOps, alerting security teams and developers immediately of new vulnerabilities in the CI/CD pipeline, ensuring all API code is continuously validated.

Graylog API Security captures details to immediately identify valid traffic from malicious actions, adding active API intelligence to your security stack. Think of it as a “security analyst in-a-box,” automating API security by detecting and alerting on zero-day attacks and threats.

StackHawk is a dynamic application and API security testing tool built for developers. With powerful automation and integration capabilities, StackHawk gives engineers the ability to find and fix security vulnerabilities. StackHawk makes it simple for developers to find, triage, and fix application security bugs. Scan your application for AppSec bugs in the code your team wrote, triage and fix with provided documentation, and automate in your pipeline to prevent future bugs from hitting prod.

Reblaze provides full-scope DoS and DDoS protection, defeating attacks across layers 3, 4, and 7: network, transport, and application. Reblaze provides cloud-based web security and protects against sophisticated attacks, exploits and other malicious activity targeted at your web site. Reblaze incorporates the best intrusion detection mechanisms in a single, unified and integrated platform, which automatically protects your website from the moment it is connected to the service.

Appknox is a plug & play mobile app security solution used by enterprises around the world to detect threats in their apps within minutes. Appknox's API security testing can be easily enabled from the same dashboard that helps you manage other Vulnerability Assessment (VA) activities such as the static code analysis tool and DAST tool, with just a few clicks.