42Crunch

42Crunch API Security Audit

The 42Crunch API Security Audit performs automated static analysis of API definitions (OpenAPI 2, 3.0, 3.1 and GraphQL), running over 200 checks across format validation, data d...

42Crunch API Scan

42Crunch API Scan performs dynamic API security testing (DAST) that evaluates runtime API behavior against its OpenAPI specification. It tests how well an API adheres to its con...

42Crunch API Protection

42Crunch API Protection deploys an API-native micro firewall (API Firewall) that provides runtime defense against API attacks. The firewall is tailor-made for each API based on ...

42Crunch API Conformance Scan Jobs Manager

The 42Crunch Scand Manager provides a convenient way to run 42Crunch API Conformance Scans on-premises as Kubernetes Jobs. It manages the full lifecycle of scan jobs including c...

42Crunch API Security Scanning

Workflow capability for DevSecOps engineers and security teams running automated API conformance scans on Kubernetes. Combines scan job management and log retrieval into a unifi...

Automated static analysis of OpenAPI and GraphQL definitions running over 200 security checks, scoring APIs 0-100 for vulnerability and compliance issues.

Dynamic API Security Testing that evaluates runtime API behavior against its OpenAPI contract, identifying vulnerabilities that appear only at runtime.

API-native micro firewall that enforces OpenAPI contract compliance at runtime, blocking malformed requests, unauthorized access, and API attacks.

Identifies and catalogs APIs across environments to provide full visibility into the API attack surface.

GitHub Actions and other CI/CD pipeline integrations for automated security scanning in deployment workflows.

Plugins for VS Code and IntelliJ/JetBrains IDEs that provide real-time OpenAPI editing, validation, and security feedback during API design.

Enforces security best practices in OpenAPI specifications covering authentication, data validation, input/output schemas, and transport security.

Scand Manager provides a Kubernetes wrapper for running 42Crunch API Scan in containerized environments.

Embed automated API security scanning into CI/CD pipelines via GitHub Actions to catch vulnerabilities before they reach production.

Audit OpenAPI definitions for security flaws, missing authentication, weak data validation, and schema gaps before API deployment.

Deploy the API Firewall in front of production APIs to enforce contract compliance and block attacks in real time.

Provide development, security, and operations teams with shared visibility into API security posture throughout the API lifecycle.

Systematically identify and remediate OWASP API Security Top 10 vulnerabilities in API definitions and runtime behavior.

Address regulatory and compliance requirements for API security in banking, financial services, and insurance sectors.

Secure healthcare APIs handling sensitive patient data against unauthorized access and data exposure vulnerabilities.

Native GitHub Actions for API Security Audit and API Scan, enabling automated security checks in GitHub CI/CD workflows.

OpenAPI extension for Visual Studio Code providing real-time API editing, validation, and security feedback with 42Crunch integration.

OpenAPI/Swagger Editor plugin for IntelliJ IDEA and other JetBrains IDEs.

Scand Manager provides Kubernetes-native deployment of API Scan for containerized API security testing.

Tekton Pipelines catalog integration for CI/CD security scanning tasks.

SonarQube plugin that integrates 42Crunch API security audit results into code quality dashboards.

API Firewall integrates with API gateway infrastructure to enforce contract compliance at the network edge.

Runtime protection events can be forwarded to SIEM and SOC platforms for centralized threat monitoring and alerting.

Data Center App Performance Toolkit support for Atlassian platform integration.

42Crunch Scand Manager Context

5 classes · 8 properties

42Crunch API Rules

43 rules · 12 errors 21 warnings 10 info