Discover vulnerabilites

As part of API Discovery, AppSentinels Security Platform performs an initial vulnerability risk assessment of the discovered APIs for misconfiguration. AppSentinels Dynamic Application Security Testing (DAST) discovers the OWASP Top 10 and OWASP API Top 10 vulnerabilities, such as Broken User Authentication, Broken Object Level Authorization, and SQL Injection.

The vulnerabilities found in the APIs are classified by severity based on their potential impact. They can be tracked for fixing and resolution via multiple statuses on the Dashboard. 

Vulnerability risk assessment is a continuous process. New APIs are assessed for vulnerabilities and reported for fixing. 

See Vulnerabilities for more details.

Vulnerability insights are available in the Vulnerability Report. See Reports for more details.

Objectives

Some of the key objectives of vulnerability management are:

• Prioritize vulnerabilities for fixing such that the overall attack surface of the application reduces rapidly and results in lesser attacks and events.
• Factor in the fixes in the new APIs under development.