For the complete documentation index, see /llms.txt. Markdown version of this page: /en/products/aikido/api-scanning.md.
EN / NB Contact us →
EN / NB

Consulting

MDR / SOC

Vulnerability Management

Identity

Compliance

AI Security

CrowdStrike

Aikido

Tenable

Idira (CyberArk)

Browse

Series

Events & resources

About us

Company info

Contact

Partners

Attack

API Scanning

API Scanning focuses on the APIs an application exposes. It finds these endpoints and tests them for security problems.

What it is

This is security testing aimed at REST and GraphQL APIs. It discovers the endpoints that an application offers, then probes each one for weaknesses. The result is a clearer view of where APIs are at risk.

Key capabilities

  • Discovers REST and GraphQL API endpoints.
  • Tests APIs for common security weaknesses.
  • Covers both internal and public-facing APIs.
  • Reports the issues it finds per endpoint.

Who it’s for

It suits teams that build or depend on APIs. It helps developers and security staff make sure endpoints are not left exposed. It fits applications that rely heavily on API traffic.

Read more on Aikido

Questions or inquiry? [email protected] Contact us →