Graylog API Security enables organizations to identify and classify APIs>
Help Net Security –
Graylog has launched a free version of its API Security tool, aiming to make API security more accessible to enterprises as API-related attacks continue to rise.
This tool enables organizations to identify and classify APIs, detect and receive alerts on threats from within the perimeter, and capture all API request and response details to distinguish valid traffic from malicious actions, such as detecting data exfiltration hidden under valid response codes.
The CEO of Graylog, Andy Grolnick, emphasizes the importance of having the right capabilities for continuous detection and response around API-specific attacks, as cyber criminals increasingly target the vulnerable API attack surface for nefarious activities.
The Free Edition of Graylog API Security offers features such as API discovery, risk scoring, full-fidelity capture, real-time threat intelligence, and guided remediation.
It is a cloud-native architecture available for self-managed private cloud or on-prem implementations, with the free edition including all the features of the paid version but limited to 16GB of local rolling storage on a single node with a one-year renewable license.
This is aimed at enabling a broader audience to access advanced API security capabilities to make the digital world safer.
Link: https://www.helpnetsecurity.com/2024/02/01/graylog-api-security-enables-organizations-to-identify-and-classify-apis/