Introducing API Discovery from Source Code
Shift-left like never before! Discover your APIs directly from the source code—reducing the process from 5 weeks to just 5 minutes.
Discover APIs from GitHub, Bitbucket or Gitlab
You can now create a complete API schema and swagger in minutes with code base as input. Akto will read your codebase (e.g., GitHub or Bitbucket repositories) and generate swagger.
Know Zombie, Shadow APIs 100x faster
Get a complete view of all APIs in your codebase, including shadow, Zombie, or hidden ones that may not show up in production traffic. Akto supports Java, Python, Go, NodeJS.
Spotlight Features
Explore APIs with deep customized queries
Search for specific API endpoints with powerful search and filter options, with queries like regex pattern matching, method, domain and more.
See API Tree View for your API Services
You can now see a structured tree view for your API collections, making it easier for you to navigate through relevant API services and urls.
Blacklist and whitelist API Traffic
Now, you can blacklist, whitelist, or modify APIs, domains using custom criteria, such as specific paths, whitelist APIs with content type containing JSON, form, gRPC or GraphQL
Testing Capabilities
33 New API Security Test Templates
Test with 18 XXE, 8 NoSQLi, 2 log injection and Flask Configuration Access, and 5 Forwarded Header injection new templates. Click on run test and see results for yourself.
Enjoy Improved results with advanced checks
New checks for SQLi, command injection, and JWT header tests help reduce false positives. Use these strict checks for improved test validation.
Use Pre-request Scripts for API Security Tests
Akto now supports custom JavaScript for pre-processing before running API security tests. Set variables, headers, parameters, and body data as needed before you run tests.
Save time to create Auth Type for Test Roles
You can now add authentication types to test roles from the API request itself. Right click on auth token in any API request and add auth type.
Deployment
Connect with the improved NGINX Connector
Akto’s NGINX connector now discovers more APIs, including those with file responses, giving you greater security and better API visibility.
Use Terraform scripts for Deployments
Deploy Akto’s traffic collector and simplify your hybrid environment management with just a Terraform script.
100+ more improvements
