Views:

Gain comprehensive visibility over your organization's APIs to identify potential security vulnerabilities.

Important
Important
This is a pre-release sub-feature and is not part of the existing features of an official commercial or general release. Please review the Pre-release sub-feature disclaimer before using the sub-feature.
Attack Surface Discovery detects the REST and HTTP-based API endpoints from the API gateways of your organization's connected cloud accounts and groups them into API collections. Trend Vision One categorizes and assigns risk scores for each API collection. The APIs section of Attack Surface Discovery provides a consolidated overview of your API collections and endpoints to help you quickly identify potential vulnerabilities and continuously assess and prioritize risk.
For information about connecting cloud accounts, see Cloud Accounts.
The following cloud provides and services are currently supported:
  • AWS
    • Amazon API Gateway
  • Azure
    • Azure API Management
The following table details the actions available in the APIs section of Attack Surface Discovery.
Action
Description
Find API collections
  • Search for API collections by name.
  • Click Filter to add a filter.
Manage connected cloud accounts
  • Click any cloud provider name to go to Cloud Accounts.
Export a report
  • Click Export to generate a report for the cloud assets currently displayed on the list.
View the details of an API collection
  • Click any API collection name to view additional details on the API collection profile screen.
  • Expand any API collection for an overview of the individual API endpoints contained in the collection.
    • Click on any integration resource to view additional details.
Related information