Passive Scan Vulnerabilities
After onboarding and reviewing the APIs, the next phase is to assess the vulnerabilities identified by the AppSentinels Platform through its Passive Scan engine.
Purpose of Passive Scan
The Passive Scan engine analyzes live API traffic without sending active test requests. It helps identify potential vulnerabilities related to:
- Misconfigurations
- Missing Security Headers
- Sensitive Data Exposure from the server
These findings highlight configuration gaps and enhance the security posture of your APIs.
Review and Remediation
- Navigate to Vulnerabilities in the AppSentinels dashboard.
- Filter by Passive Scan to view relevant vulnerabilities.
- Review and validate detected vulnerabilities.
- Prioritize for remediation by the development or infrastructure teams.
-
Take corrective actions such as:
- Adding missing security headers
- Restricting sensitive data exposure
- Updating server configurations
Handling Non-Applicable Vulnerabilities
If some findings are already handled (e.g., via egress proxy) or not applicable:
- Navigate to Settings → Vulnerabilities → Passive Scan
- Disable specific vulnerabilities that are not relevant
- Reduce noise in alerts and streamline security reviews
✅ Regular review and action on Passive Scan alerts ensure ongoing
improvement in API security and reduce the attack surface.