News
September 2023 Newsletter: LLM Security Beta, Akto on G2 and more
This blog is the second monthly newsletter for Akto. Akto's API security newsletter talks about beta program, new features launches and upcoming events.
Ankita Gupta
Oct 2, 2023
10 mins
👋 Hello Akto community!
Welcome to the September edition of the Akto Newsletter!
This month we are announcing Akto's LLM Security beta in November, launch of Akto in CLI, Vulnerability tagging with CWE, Login with GitHub, Akto on G2 and Gartner. Read on to learn more.
TLDR Important links:
[NEW Launch] LLM Security for AI APIs in Beta
We cannot be more thrilled to announce beta launch of our new features in a new category - LLM Security. We are the first ever security company to launch LLM Security features and we can’t wait to reveal them to the world. Join us as we reveal features for OWASP Top 10 for LLMs such as prompt injection, insecure output handling and more. Sign up for Beta here.
We are now on G2 and Gartner
Akto has grown with tonnes of customer reviews and feedback. We thought of giving our users a platform to write user reviews so that others can learn more about the wonderful things we have been doing in the API Security space. To accomplish that, we are now officially registered on G2 and Gartner. Go ahead and check our platform page and help us get those five star ⭐️ reviews.
Super Exciting new launches last month!
Introducing Akto in CLI
You can now run Akto tests directly from the Command-Line Interface (CLI). No need to jump between screens or platforms. Run Akto tests right from your terminal, be it locally or on a custom domain. Start now by testing from the largest API Security library. You can read the announcement blog to get started.
Akto’s Test Editor is now 2x more efficient
We've added autocomplete, syntax error highlighting and examples snippets in YAML test editor. With auto-generation to YAML templates, you can choose to add example commands by just clicking on the suggestions from test editor. You no longer have to lookup and find the YAML operators while writing your test. Read more in the announcement blog.
Login using GitHub is now available to all On Premise users
In order to allow for easy access, Akto has incorporated the Sign in with GitHub button, easily extending to developers in your organization. Signup using this link. Read announcement blog.
👋 Hello Akto community!
Welcome to the September edition of the Akto Newsletter!
This month we are announcing Akto's LLM Security beta in November, launch of Akto in CLI, Vulnerability tagging with CWE, Login with GitHub, Akto on G2 and Gartner. Read on to learn more.
TLDR Important links:
[NEW Launch] LLM Security for AI APIs in Beta
We cannot be more thrilled to announce beta launch of our new features in a new category - LLM Security. We are the first ever security company to launch LLM Security features and we can’t wait to reveal them to the world. Join us as we reveal features for OWASP Top 10 for LLMs such as prompt injection, insecure output handling and more. Sign up for Beta here.
We are now on G2 and Gartner
Akto has grown with tonnes of customer reviews and feedback. We thought of giving our users a platform to write user reviews so that others can learn more about the wonderful things we have been doing in the API Security space. To accomplish that, we are now officially registered on G2 and Gartner. Go ahead and check our platform page and help us get those five star ⭐️ reviews.
Super Exciting new launches last month!
Introducing Akto in CLI
You can now run Akto tests directly from the Command-Line Interface (CLI). No need to jump between screens or platforms. Run Akto tests right from your terminal, be it locally or on a custom domain. Start now by testing from the largest API Security library. You can read the announcement blog to get started.
Akto’s Test Editor is now 2x more efficient
We've added autocomplete, syntax error highlighting and examples snippets in YAML test editor. With auto-generation to YAML templates, you can choose to add example commands by just clicking on the suggestions from test editor. You no longer have to lookup and find the YAML operators while writing your test. Read more in the announcement blog.
Login using GitHub is now available to all On Premise users
In order to allow for easy access, Akto has incorporated the Sign in with GitHub button, easily extending to developers in your organization. Signup using this link. Read announcement blog.
👋 Hello Akto community!
Welcome to the September edition of the Akto Newsletter!
This month we are announcing Akto's LLM Security beta in November, launch of Akto in CLI, Vulnerability tagging with CWE, Login with GitHub, Akto on G2 and Gartner. Read on to learn more.
TLDR Important links:
[NEW Launch] LLM Security for AI APIs in Beta
We cannot be more thrilled to announce beta launch of our new features in a new category - LLM Security. We are the first ever security company to launch LLM Security features and we can’t wait to reveal them to the world. Join us as we reveal features for OWASP Top 10 for LLMs such as prompt injection, insecure output handling and more. Sign up for Beta here.
We are now on G2 and Gartner
Akto has grown with tonnes of customer reviews and feedback. We thought of giving our users a platform to write user reviews so that others can learn more about the wonderful things we have been doing in the API Security space. To accomplish that, we are now officially registered on G2 and Gartner. Go ahead and check our platform page and help us get those five star ⭐️ reviews.
Super Exciting new launches last month!
Introducing Akto in CLI
You can now run Akto tests directly from the Command-Line Interface (CLI). No need to jump between screens or platforms. Run Akto tests right from your terminal, be it locally or on a custom domain. Start now by testing from the largest API Security library. You can read the announcement blog to get started.
Akto’s Test Editor is now 2x more efficient
We've added autocomplete, syntax error highlighting and examples snippets in YAML test editor. With auto-generation to YAML templates, you can choose to add example commands by just clicking on the suggestions from test editor. You no longer have to lookup and find the YAML operators while writing your test. Read more in the announcement blog.
Login using GitHub is now available to all On Premise users
In order to allow for easy access, Akto has incorporated the Sign in with GitHub button, easily extending to developers in your organization. Signup using this link. Read announcement blog.
Monthly product updates in your inbox. No spam.
✔️ More Product Updates:
Export vulnerability reports: This is the first step towards collaborative reporting. In order to improve collaboration and help security teams share finding reports amongst each other and developers, we have released a feature called Export as HTML. Read our announcement blog.
Akto Vulnerabilities are now tagged with CWEs: Every vulnerability detected by Akto now comes with one or more associated CWE tags. CWE provides a shared vocabulary, ensuring that everyone, from developers to security teams, is on the same page. Read announcement.
API CVE Database: We now have API CVE database - Security vulnerabilities found in popular and common software on our website. This is also the world’s first API only CVE database.
⚒️ See everything we've shipped in the Akto changelog →
💡 Upcoming events:
Hacktoberfest 2023 : Akto is participating in Hacktoberfest 2023 this year. Go ahead, contribute to open issues in Akto’s GitHub Repository.
The Roadmap to DevSecops Adoption: Akto’s cofounder and CEO is speaking this year Teleport Conference 2023 in San Francisco. Register now to get your spot.
Hands on API Security Workshop in LA: Akto is back with it’s popular API Security workshop in LA in collaboration with OWASP on Oct 27. Register now.
📕 Recommended Reading, listening and watching:
What is DevSecOps?: Introduction to DevSecOps, its evolution, and significance. Learn about it here.
DevSecOps Best Practices: Learn about the top 8 devsecops best practices for secure software development.
XML Injection Vulnerability: A comprehensive guide, examples, cheat sheet, and prevention measures.
Akto’s 2nd podcast episode - API Security: The good, the bad, the ugly, Ep2: Ashwani Mahajan from SoFi explores critical security practices for API security.
Hands on OWASP Top 10 Tutorials: Check out tutorials on SSRF Port Scanning, Mass Assignment and BOLA in old API versions.
🤔 What’s Next?
Stay tuned for exciting new features, riveting podcast episodes and immersive conversations on proactive API Security!
If you've made it this far, I'd love to know what you think of our newsletter! What would you like to hear about next? Reply to let me know!
Stay tuned for the latest news in API Security. See you next month! 🚀
✔️ More Product Updates:
Export vulnerability reports: This is the first step towards collaborative reporting. In order to improve collaboration and help security teams share finding reports amongst each other and developers, we have released a feature called Export as HTML. Read our announcement blog.
Akto Vulnerabilities are now tagged with CWEs: Every vulnerability detected by Akto now comes with one or more associated CWE tags. CWE provides a shared vocabulary, ensuring that everyone, from developers to security teams, is on the same page. Read announcement.
API CVE Database: We now have API CVE database - Security vulnerabilities found in popular and common software on our website. This is also the world’s first API only CVE database.
⚒️ See everything we've shipped in the Akto changelog →
💡 Upcoming events:
Hacktoberfest 2023 : Akto is participating in Hacktoberfest 2023 this year. Go ahead, contribute to open issues in Akto’s GitHub Repository.
The Roadmap to DevSecops Adoption: Akto’s cofounder and CEO is speaking this year Teleport Conference 2023 in San Francisco. Register now to get your spot.
Hands on API Security Workshop in LA: Akto is back with it’s popular API Security workshop in LA in collaboration with OWASP on Oct 27. Register now.
📕 Recommended Reading, listening and watching:
What is DevSecOps?: Introduction to DevSecOps, its evolution, and significance. Learn about it here.
DevSecOps Best Practices: Learn about the top 8 devsecops best practices for secure software development.
XML Injection Vulnerability: A comprehensive guide, examples, cheat sheet, and prevention measures.
Akto’s 2nd podcast episode - API Security: The good, the bad, the ugly, Ep2: Ashwani Mahajan from SoFi explores critical security practices for API security.
Hands on OWASP Top 10 Tutorials: Check out tutorials on SSRF Port Scanning, Mass Assignment and BOLA in old API versions.
🤔 What’s Next?
Stay tuned for exciting new features, riveting podcast episodes and immersive conversations on proactive API Security!
If you've made it this far, I'd love to know what you think of our newsletter! What would you like to hear about next? Reply to let me know!
Stay tuned for the latest news in API Security. See you next month! 🚀
✔️ More Product Updates:
Export vulnerability reports: This is the first step towards collaborative reporting. In order to improve collaboration and help security teams share finding reports amongst each other and developers, we have released a feature called Export as HTML. Read our announcement blog.
Akto Vulnerabilities are now tagged with CWEs: Every vulnerability detected by Akto now comes with one or more associated CWE tags. CWE provides a shared vocabulary, ensuring that everyone, from developers to security teams, is on the same page. Read announcement.
API CVE Database: We now have API CVE database - Security vulnerabilities found in popular and common software on our website. This is also the world’s first API only CVE database.
⚒️ See everything we've shipped in the Akto changelog →
💡 Upcoming events:
Hacktoberfest 2023 : Akto is participating in Hacktoberfest 2023 this year. Go ahead, contribute to open issues in Akto’s GitHub Repository.
The Roadmap to DevSecops Adoption: Akto’s cofounder and CEO is speaking this year Teleport Conference 2023 in San Francisco. Register now to get your spot.
Hands on API Security Workshop in LA: Akto is back with it’s popular API Security workshop in LA in collaboration with OWASP on Oct 27. Register now.
📕 Recommended Reading, listening and watching:
What is DevSecOps?: Introduction to DevSecOps, its evolution, and significance. Learn about it here.
DevSecOps Best Practices: Learn about the top 8 devsecops best practices for secure software development.
XML Injection Vulnerability: A comprehensive guide, examples, cheat sheet, and prevention measures.
Akto’s 2nd podcast episode - API Security: The good, the bad, the ugly, Ep2: Ashwani Mahajan from SoFi explores critical security practices for API security.
Hands on OWASP Top 10 Tutorials: Check out tutorials on SSRF Port Scanning, Mass Assignment and BOLA in old API versions.
🤔 What’s Next?
Stay tuned for exciting new features, riveting podcast episodes and immersive conversations on proactive API Security!
If you've made it this far, I'd love to know what you think of our newsletter! What would you like to hear about next? Reply to let me know!
Stay tuned for the latest news in API Security. See you next month! 🚀
Monthly product updates in your inbox. No spam.
Keep reading
API security breaches
10 mins
LinkedIn Data Breach: 500 million Users Data on sale online and 2 million records Leaked
500 million LinkedIn profiles are being offered for sale on a well-known hacker forum, and an additional 2 million records have been leaked as a sample.
Insights
15 mins
Ensuring API security within the DevSecOps framework
This article aims to shed some light on the convergence of API security and DevSecOps, emphasizing the urgency of strong API security in the current digital landscape.
Insights
27 mins
Securing Cloud-Native Applications in DevSecOps
DevSecOps gives security teams the tools and practices to scale rapidly along with cloud native development. The end result is a robust combination of speed and protection applied from code committed to production runtime.
Learn from academy
What is API?
Types of APIs
REST API
GraphQL
JSON-RPC
XML-RPC
SOAP API
GraphQL vs REST
REST vs SOAP
GET Method
POST Method
PUT Method
DELETE Method
GET vs POST
PUT vs POST
HTTP Status Code
200 Status Code - OK
201 Status Code - Created
204 Status Code - No Content
301 Status Code - Moved Permanently
302 Status Code - Found
304 Status Code - Not Modified
307 Status Code - Temporary Redirect
400 Status Code - Bad Request
401 Status Code - Unauthorized
403 Status Code - Forbidden
404 Status Code - Not Found
500 Status Code - Internal Server Error
502 Bad Gateway
503 Status Code - Service Unavailable
504 Gateway Timeout
GraphQL Authentication and Authorization
GraphQL Query
GraphQL Mutation
GraphQL Introspection
GraphQL Pagination
GraphQL Subscription
GraphQL Fragment
API Documentation
Swagger for API Documentation
OpenAPI Specification
Authentication
Authorization