API Security Resources

API security resources

Explore resources related to API security, from white papers and webinars to blog posts and case studies. Find best practices and product information on making API security testing a permanent and efficient part of your web development and operations.

White Paper

API vulnerability testing in the real world: Best practices for building API security testing into your SDLC

White Paper

Web API Security: Defending Your Hidden Attack Surface

Webinar

GraphQL API Security and DAST

Webinar

An Integrated Approach to Scanning Web APIs with DAST

Webinar

API Security Decoded: Insights into Emerging Trends and Effective AppSec Strategies

Blog posts on API security

View all

What’s missing from the OWASP API Security Top 10 2023

Read this article

How to ensure REST API security

Read this article

How APIs creep up on you – and how to stay secure regardless

Read this article

Surviving the API apocalypse: How to defeat zombie APIs

Read this article

APIs make XSS prevention a frontend job

Read this article

Case Studies

View all

Zen Internet – IT & Telecom

This case study explains how Invicti Enterprise helps Zen Internet build continuous security into their web application development process to keep their customers secure.

Read this article

Allocate Software – Healthcare

This case study explains how Invicti Security and Longwall Security help Allocate Software close gaps with updated tooling and automation.

Read this article

OpenCart – IT & Telecom

This case study explains how the OpenCart team integrated Invicti Enterprise's automated web vulnerability scans in the SDLC to develop more secure code.

Read this article

Support articles on API security

View all

Overview of scanning APIs with Invicti

Read this article

Scanning a RESTful API Web Service

Read this article

Scanning a GraphQL API for vulnerabilities

Read this article

Scanning SOAP API Web Services

Read this article

Importing links and API definitions for scanning

Read this article