Let us worry about security so you don’t have to.
You do not have to rely on security by obscurity, manually configured rules, or hope that some anomaly detection can report an attack. With 42Crunch, there is no more guesswork required. Our approach is to rely on the API contract, leveraging the OpenAPI de-facto standard. What is described by the contract is accepted, what is not is rejected. It’s as simple and powerful as that.
42Crunch was built to do the work – so you don’t have to. With 42Crunch, security audit and scanning become automated checks ensuring that insecure code never makes it to the master branch and production deployment. Moreover, runtime protection policies get automatically redeployed with each API change, making sure that you can stay agile without compromising security.
Our API security team comes from a wide background of WAF, API management, and white hat security companies. We are one of the active members of the Linux Foundation OpenAPI Initiative and reviewers of OWASP Top 10 for API Security. With us, you can be sure that your APIs are checked against the latest known risks and follow the latest best practices.
Shifting left has never been so easy! 42Crunch gets everyone in the company speaking the same language with full visibility into all APIs, the current state of affairs, security levels, protection status, and report of any required security improvements. Collaboration becomes seamless, DevSecOps is enabled, and magic happens.
You can use our API firewall to equally protect north-south and east-west traffic. Thanks to its low footprint, it can be deployed at scale on any container orchestrator such as Kubernetes, Amazon ECS or Red Hat OpenShift(®). Our runtime is fully compatible with existing API management solutions or API gateways and with microservices-based architectures.
42Crunch has been recognized by some of the industries top analysts as a leader.
42Crunch has been recognized by Gartner as a key vendor in both the API Security: What You Need to Do to Protect Your APIs and Hype Cycle for Application Security 2019 reports.
Aite Group gave 42Crunch 5 out of 5 stars in 10 different categories in their report: The Gathering Storm: Securing the API Attack Surface With 42Crunch.
KuppingerCole has named 42Crunch a Leader in categories for Product and Innovation in KuppingerCole API Management and Security Leadership Compass 2019.
Want to learn more? Here are some resources to help you out!
Are you protected from the OWASP API Security Top 10? 42Crunch can help with that! We also have a free cheat sheet you can download.
Seamless collaboration: 42Crunch gets everyone in the company speaking the same language with full visibility into all APIs.
Information on the risks, guidelines, and fixes relating to the OpenAPI Specification. Both OAS v2 and v3 are available!