How to set up a REST API scan?

 

In order to scan a REST API of a web application, please follow these steps.

  1. Login to Security Center.
  2. Click Assets in the main menu.
  3. Click Web applications.
  4. Choose Add webb application.
  5. Under General information add the API root URL under Target and set a name under Application name.
  6. Verify the swagger documentation with http://editor.swagger.io/ (external link) that there is no errors. 
  7. Click REST API scanning in the window menu.
  8. Add the Open API 2.0 path for the specification documentation for your REST API (which may be represented either in JSON or YAML format).
  9. Click OK to save.
  10. Done!

Please notice that the domain of the Open API URL is required to match the target URL domain.

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.