DEV Community

Intesar Mohammed
Intesar Mohammed

Posted on

2 1

How to detect your leaking API endpoints using EthicalCheck

The purpose of this article is to show AppSec/developers how to get started with API security scanning tool EthicalCheck and detect your leaking APIs.

Why API leaks are a common problem. Most web and mobile are security tested at some point but APIs hardly get any attention. This means you may have leaking APIs that are live and in production.

Detecting your leaking API endpoints is very simple if you’re using the free tool. All you need is your API OpenAPI Specification/Swagger URL and get instant report.

EthicalCheck - Visit the GitHub page to run your free scan:
https://apisec-inc.github.io/pentest/

About me: I write, review, and build API security tools and best practices.

Top comments (0)

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more

👋 Kindness is contagious

Immerse yourself in a wealth of knowledge with this piece, supported by the inclusive DEV Community—every developer, no matter where they are in their journey, is invited to contribute to our collective wisdom.

A simple “thank you” goes a long way—express your gratitude below in the comments!

Gathering insights enriches our journey on DEV and fortifies our community ties. Did you find this article valuable? Taking a moment to thank the author can have a significant impact.

Okay