How do I set up a REST API scan?


In order to scan a REST API of a web application, please follow these steps.

  1. Login to Security Center.
  2. Click Asset Manager in the main menu.
  3. Click Web applications.
  4. Choose Add webb application.
  5. Under General information add the API root URL under Target and set a name under Application name.
  6. Verify the swagger documentation with (external link) that there is no errors. 
  7. Click REST API scanning in the window menu.
  8. Add the Open API 2.0 path for the specification documentation for your REST API (which may be represented either in JSON or YAML format).
  9. Click OK to save.
  10. Done!

Please notice that the domain of the Open API URL is required to match the target URL domain.  

Have more questions? Submit a request


Please sign in to leave a comment.