Resources

This paper is intended for security professionals who want a deeper understanding of how Traceable collects and uses data for context-aware API security.

Traceable’s API Catalog is an automatic and continuous API discovery solution that gives you comprehensive visibility into all of your APIs, sensitive data flows, and risk posture – even as your environment changes.

Read this whitepaper to learn more about agent and agentless observability deployment options and why comprehensive API security requires both.

This guide delivers an overview of API security requirements and a checklist to organize your API security solution. Download your copy today.

Read about Traceable AI’s approach to analytics-driven API security.

This research helps guide engineering, security, and IT teams in prioritizing risks and mitigating business disruptions from API abuse and attack.

Looking to understand the difference between the different API security tools? Compare different API security solutions across common criteria and see how they stack up.

Log4Shell is one of the most impactful vulnerabilities we have seen in recent times. Traceable AI provides quick and complete protection for your applications from being exploited by Log4Shell.

There is no fixed perimeter in the cloud, as microservices and applications connect through APIs. In the cloud, containers are created and destroyed depending on business demand, your infrastructure isn’t permanent, rather it’s ephemeral. Learn how to approach security in cloud native and containers.

Learn how the Log4shell / Log4j vulnerability creates significant risk, various mitigation strategies, and
how Traceable AI can detect and block the vulnerabilities.

The basics of API hacking including what they are, the API security top 10, how you can test for vulnerabilities in your APIs.

Hacking APIs is a crash course on web API security testing that will prepare you to penetration-test APIs, reap high rewards on bug bounty programs, and make your own APIs more secure.

Explore how API-intensive and API-experienced businesses are bringing maturity to their APIs’ protections through greater observability, tracing, and usage analysis.

As distributed architectures become more popular, new API security vulnerabilities are on
the rise. Learn how to design authentication and authorization systems to protect web applications from attack.

A multipage overview of the Traceable AI solution in a downloadable PDF.

TechStrongTV interviews Jyoti Bansal, 3-time entrepeneur, about his latest startup in the cloud native application security space, Traceable AI.

The Traceable AI product overview, summarized in a hand-out format.

In this 12 minute video see an overview of Traceable Defense AI and how it uses security observability with artificial intelligence and machine learning to secure modern application architectures and their API’s.

This e-book offers a warning on what happens when you overestimate the security of your APIs. It provides a look into the tactics and techniques of API hacker Alissa Knight.

Aaron Lieberman shares best practices and insights into API security. This eBook is intended for developers, technical leads, architects, and leaders interested in building and securing a robust API environment.

Learn about Traceable and hear from expert customers and advisors about cloud-native application security

Learn how modern application architectures are driving an evolution and transformation in how applications are protected and secured.

A discussion with Traceable AI CEO and co-founder Jyoti Bansal on how APIs, microservices, and cloud-native computing form a new frontier for cybersecurity vulnerabilities — as well as opportunities for innovative defenses and resilience.

A discussion with Traceable AI CEO and co-founder Jyoti Bansal on the latest innovations for making APIs more understood, trusted, and robust.

New technologies are revolutionizing software development, but they potentially come with their own vulnerabilities. Is modern application development leaving you open to attack?

Requirements for securing modern applications. Learn how application security must evolve to protect modern cloud-native applications.

A discussion with Adrian Ludwig, CISO at Atlassian, on creating broader awareness of security risks and building a security-minded culture across organizations and ecosystems.

Learn about APIs and why they are so important for securing your web applications.

A discussion with Ravi Guntur, Head of Machine Learning and Artificial Intelligence at Traceable, on the best security solutions for APIs across their dynamic and often uncharted use across myriad apps and business services.

Guest Inon Shkedy, a security researcher at Traceable and API project leader at OWASP Foundation, talks with Dave about the risks various types of insider threats pose to APIs, we have some follow-up from a listener closing on their home, Dave’s story is about a new wave of scams saying they are from the Social […]

Using machine learning for cloud-native application security

In this webinar, Jyoti Bansal, CEO and Founder, Traceable.AI and Harness.io, explains how the new technologies of micro services, APIs, and cloud-native architectures have created new attack surfaces and potential vulnerabilities, and the things we are doing to help close the gaps.

Alan Shimel , Founder of Security Boulevard and Ashish Kuthiala, CMO of Traceable AI, discuss the importance of API Security for engineering teams and how to get get started.

The growing use of APIs means new API attack surfaces and methods that today’s security tools are inadequate to protect against. We’ll discuss what’s changed and what you can do about it.

Leading CISOs share their insights on cloud-native application security challenges and solutions

Episode I: Project Background and the Most Significant Threat to APIs

Episode II: Broken User Authentication, Excessive Data Exposure, Resources & Rate Limiting, and Broken Function Level Authorization

Episode III: Mass Assignment, Security Misconfiguration, Injection, Improper Assets Management, and Insufficient Logging & Monitoring

Episode IV: The Attacker’s Perspective, Approaches To API Pentesting, Best Tools For Finding Entry Points

Presentation to API Days London on API security and why we need to change our approach to application security given the new landscape of cloud-native, microservices and API-driven applications. Also covers Traceable AIs approach.

APIs are such a valuable asset to bad actors, but many organizations have not yet woken up to the realities of the need to protect their APIs from abuse. Aaron Lieberman (Big Compass), Dan Gordon (Traceable AI) cover how to go about doing so.

Come hear about the latest protocols supported in Traceable AI.

With digital transformation in the financial service sector accelerating faster than ever, securing the technologies has never been more important. Our panelists explore the new challenges.

RASP, or Runtime Application Self-Protection, is a modern security technology that protects web applications from attacks during runtime. We’ll take a deeper look into RASPs. What their advantages are, and what their disadvantages are.

Observability plays an important role in a world full of modern cloud-native applications. It helps us to understand complex architectures, the root cause of the problems, and performance issues easily. In this Panel discussion, we will discussour panelists’ visions around observability.

A discussion with Traceable AI CTO and co-founder Sanjay Nagaraj on a new platform designed from the ground up to define, manage, secure, and optimize the API underpinnings for so much of what drives today’s digital business.

A discussion on an open-source project, Hypertrace, and how it helps designers, builders, and testers of modern APIs gain visibility across their internal and third-party services.

A discussion with Greg Phillips, Chief Technology Officer (CTO) at Houwzer, on how a cloud-based home-brokerage-enabler, Houwzer, constructed a resilient API-based platform as the heart of its services integration engine.