Newsletter
Join the Community
Subscribe to our newsletter for the latest news and updates
OWASP ASTF: Automated API security testing framework based on OWASP API Security Top 10, designed for CI/CD integration and detailed reporting.
AI-native SAST tool for code security, detecting vulnerabilities, secrets, IaC issues, and AI model security with actionable AI fixes.
A comprehensive automated testing framework for detecting API security vulnerabilities based on the OWASP API Security Top 10. The OWASP API Security Testing Framework (ASTF) helps security professionals and developers identify vulnerabilities in their APIs through automated testing. Built with enterprise needs in mind, it provides detailed security analysis and integrates with modern CI/CD pipelines.
# Run a basic scan
java -jar target/api-security-testing-framework-1.0-SNAPSHOT.jar scan \
--target https://api.example.com \
--auth-header "Authorization: Bearer YOUR_TOKEN"