Salt – Mapping the MITRE ATT&CK Framework to API Security
Posted on: 07/08/2023 By: Moa Karlsvärd
API attacks include many of the tactics, techniques, and procedures (TTPs) identified in the […]
- Careers
- Contact Us
- Investors
-
Choose Country...
Global- View All
Africa
South Africa
Albania
Australia
Austria
Belgium
Bosnia Herzegovina
Bulgaria
Canada
Canada FR
Croatia
Czech Republic
Denmark
Estonia
Finland 
Finland (English)
France
Germany
Hong Kong
Hungary
Iceland
India
Indonesia
Ireland
Israel
Italy
Kosovo
Latvia
Lithuania
Malaysia
Middle East
Montenegro
Netherlands
New Zealand
North Macedonia
Norway
Philippines
Poland
Portugal
Romania
Saudi Arabia
Serbia
Singapore
Slovakia
Slovenija
Spain- Sweden
Switzerland DE
Switzerland FR
Thailand
Turkey
USA
Ukraine
United Kingdom
Vietnam
-
Salt Security: API Security Across Build, Deploy & Runtime
Salt Security delivers an API Threat Protection solution focused on securing the ubiquitous APIs connecting everything from web and mobile applications to microservices and IoT devices. These are the APIs that you develop and own and are at the core of connecting your applications and data.
Powered by our AI-based Big Data engine and Holistic Detection architecture, only Salt Security:
– Discovers all your APIs and the sensitive data they expose
– Pinpoints and stops attackers during reconnaissance
– Eliminates API vulnerabilities to strengthen your security posture
Salt Security was founded in 2016 by alumni of the Israeli Defense Forces (IDF) to deliver the first, patented API Protection platform to secure APIs. Salt Security deploys in minutes, automatically learns your unique APIs, and requires no configuration or customization to help you protect and improve your API security.
The Salt platform
The Salt Security API Protection Platform secures the APIs at the heart of all your modern applications. The platform collects API traffic across your entire application landscape and makes use of AI/ML and a big data engine to discover all your APIs and their exposed data, stop attacks, and eliminate vulnerabilities at their source.
Easy integration to protect all your APIs
Salt integrates quickly with any environment and doesn’t require agents, changes to application code, or configuration. We’re not inline, so there’s no impact on application performance, availability, or functionality. With support for more than 50 API collection options, we work anywhere and support the most use cases to protect all your APIs – internal, external, and third-party.
Rich context through continuous API traffic analysis
Our patented API Context Engine (ACE) architecture – powered by big data, artificial intelligence (AI), and machine learning (ML) – continuously analyzes a copy of all API traffic from your environments. We leverage the rich context that our ACE architecture enables to discover all APIs, stop attacks, and help you continuously improve API security.
Key capabilities of the Salt platform
Gain a complete view of your API attack surface
Salt automatically and continuously discovers all your internal, external, and third-party APIs, including unknown (shadow) and outdated (zombie) APIs. We uncover the granular details of each API, including exposed sensitive data, to help you assess risk. We also let you know when APIs are updated, or new APIs are released and when sensitive data exposure changes, so you maintain an up-to-date view of your attack surface.
Pinpoint attackers and stop attacks
Salt uses the API context derived from our big data engine to establish a baseline for each API. We correlate all API and user activity, enabling us to uncover the reconnaissance actions of bad actors early in their probing. We consolidate the activity into a single alert with a complete attacker timeline, and you can choose manual or automatic blocking, leveraging the inline devices you already have deployed.
Continuously improve API security
Salt is embedded throughout the API lifecycle to help you build and deliver more secure APIs. We help eliminate vulnerabilities and gaps early in the dev cycle by analyzing and testing APIs before release. We also help you continuously harden your APIs by learning from attacker activity to identify vulnerabilities found only at runtime and provide clear remediation insights dev teams can apply to eliminate security gaps.
Salt Security Resources
Exclusive Networks Partners with Salt Security to Combat Growing API Security Threat
Posted on: 02/03/2022 By: Jens Edström
Global cybersecurity specialist Exclusive Networks becomes first PAN-EMEA value-added distributor for Salt PARIS, FRANCE […]
