Imperva API Security is an API protection solution that provides continuous monitoring and security for APIs across cloud, on-premises, and hybrid environments. The tool performs automated discovery and classification of public, private, and shadow APIs to maintain a comprehensive API inventory. It includes capabilities for identifying design flaws and vulnerabilities associated with OWASP API Security Top 10. Key functionalities include: - Continuous API discovery and risk assessment - Detection of business logic vulnerabilities like Broken Object Level Authorization (BOLA) - Integration with WAF and bot protection systems - Support for both agent-based and agentless deployment options - API traffic inspection across encrypted applications and microservices - Classification of APIs based on sensitivity and data types - Integration capabilities with API gateways and management platforms The solution can be deployed as: - Cloud-managed through Imperva Cloud WAF - Self-managed via local management console - API Security Add-on for existing Imperva WAF users It provides monitoring for both north-south and east-west API traffic, enabling organizations to maintain visibility and security across their entire API infrastructure.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
APKiD is a tool that identifies compilers, packers, obfuscators, and other weird stuff in APK files.
A security-focused general purpose memory allocator providing the malloc API with hardening against heap corruption vulnerabilities.
Search engine for open-source Git repositories with advanced features like case sensitivity and regular expressions.
A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots
A tool for detecting capabilities in executable files, providing insights into a program's behavior and potential malicious activities.
A Java API for searching and downloading Android applications from Google Play with additional check-in features for generating ANDROID-ID.
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Integrates static APK analysis with Yara and requires re-compilation of Yara with the androguard module.
QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.