API Flypanel

The API Flypanel provides a comprehensive view of each individual API in your application. It consolidates all relevant insights and technical attributes into a single interface to help security teams and developers understand the behavior, usage, and security posture of an API.

📊 API Statistics

Total number of API calls
Data transfer volume (in/out)
Error count and error rate
Average response time

📌 Parameters Used in API

Lists all request parameters observed for the API including:

Query, Path, Header, and Body parameters
Data types, required status, and example values

🛡️ Vulnerabilities Found

Displays all security issues identified for the API such as:

OWASP API Top 10 vulnerabilities (e.g., Broken Auth, Excessive Data Exposure)
DAST and passive scan findings with evidence and recommendations

⚠️ Threats Detected

Shows malicious activities involving this API such as:

API abuse, fuzzing attempts, or anomalous behaviors
Suspicious IPs or tokens

🔗 Sequence of APIs Called After This API

Illustrates the logical flow where this API is part of a sequence, e.g.,:

API A → API B → API C

🔄 Data Relationship Between APIs

Provides insight into data flow relationships by identifying which upstream APIs produce the input data for this API and which downstream APIs consume the response data generated by this API.

📦 Sample Payloads

Provides example requests and responses observed during traffic inspection, including:

Different response types (2xx, 4xx, 5xx)
Headers and body payloads

🧪 API Testing Details

Summarizes security tests performed on this API, such as:

Coverage of attack types and techniques
Test result status (Passed/Failed)
Test replay options

✅ Reviewing API Flypanel regularly helps identify security gaps, track API behavior, and validate enforcement of security policies.

⯇ API Tree API Attributes ⯈