Scanning APIs

Learn how to scan your APIs with Invicti

• Overview of Scanning APIs
  • Overview of Scanning APIs
    • Challenges to scanning APIs
    • Scanning APIs with Invicti
• SOAP API Web Services
  • Scanning SOAP API Web Services
    • Scanning a SOAP API web service for vulnerabilities
    • Automating the discovery of SOAP APIs during crawling
• RESTful API Web Service
  • Scanning a RESTful API Web Service
    • Differences Between a Web Service and a REST API
    • The Challenges of Scanning REST API Interfaces
    • Scanning a RESTful API Web Service for Vulnerabilities
    • Importing the Definition Files Manually
• GraphQL
  • Scanning a GraphQL API for vulnerabilities
    • Key concepts in GraphQL
    • Scanning a GraphQL API for vulnerabilities
• Importing links and API
  • Importing links and API definitions
    • Links/API Definitions Fields
    • Importing links/API definitions in Invicti Enterprise
    • Importing links/API definitions in Invicti Standard
  • Importing links from supported tools
    • What files types can be imported into Invicti?
    • Acunetix Xml
    • ASP.NET Project File (.csproj, .vbproj)
    • Burp Saved Items
    • Comma Separated Values
    • Fiddler
    • HTTP Archives
    • I/O Docs
    • Postman Collections
    • RAML
    • Open API
    • Web Application Description Language
    • Web Services Description Language
    • WordPress REST API