Developing secure APIs is crucial, but testing them thoroughly can be time-consuming and difficult without the right tools. A new offering called CodeSec from application security provider Contrast Security aims to make robust API security testing quick, accurate, and accessible to all developers for free. I had the opportunity to catch up with Jeff Williams, CTO at Contrast at Black Hat 2023. Here’s what I learned.

CodeSec provides an easy command-line interface to scan APIs and serverless functions written in Java, JavaScript, Python, and .NET. It leverages Contrast’s patented demand-driven analysis to deliver results up to 10 times faster than competitors. This allows developers to rapidly identify vulnerabilities in their code before those flaws reach production.

Leave a Reply

Your email address will not be published. Required fields are marked *