Tag: REST

You’ve probably come across terms like API Catalog, API Portal, API Gateway… and found yourself scratching your head, thinking, what kind of tech magic is this? Are you feeling lost amidst these buzzwords that everyone seems to be throwing around? If you want to catch up, grasp these concepts, and determine which solution suits your needs, you’ve landed in the right spot! Note: We will be using the term API Catalog as a generic...

Web application security is a big topic, and two terms you might hear often are XSS and CSRF. They both point to ways websites can be attacked, even though they work differently. To break it down simply: XSS stands for Cross-site scripting. It’s like someone sneaking a message into a conversation. CSRF, or Cross-site request forgery, is like someone pretending to be you to trick others. Though they have different ways of causing trouble, they do...

While GraphQL APIs are growing in popularity due to their flexible query capabilities, REST currently remains the dominant architectural style for building web APIs. Unlike GraphQL, traditional REST technologies do not inherently provide an interactive schema that clients can use to explore the API. At Escape, we decided to use OpenAPI specifications or Postman Collections as input to a REST scanner instead of GraphQL schema. However, the following issue arises in this context: not...

tl;dr After one year and a half of approaching API security through the lenses of GraphQL, we are proud to introduce beta support for REST API Security Testing in Escape, in addition to GraphQL. You can register for the beta using this link. You like us on GraphQL. You will love us on REST. It’s been a ride since Escape’s public release of our GraphQL Security Platform last September. Without a dollar spent in marketing,...