Rapid7, SecOps solution provider, recently introduced its Rapid7 InsightAppSec APITrack this API. The API allows IT and cyber security departments to build new apps, run scans, check scan status, cancel scans and more without hassling with a user interface. Use cases include on the fly vulnerability updates, authentication setting updates, scans, and more.
InsightAppSec is a security suite. Rapid7 takes a Dynamic Application Security Testing (DAST) approach to SecOps, and API access to the DAST suite should allow users to better engage with nuanced details of their systems. As systems become more complex, Rapid7 built the API with hopes the professionals wouldn’t have to find workarounds or settle for a less than complete solution in running a quality security solution.
Rapid7 has published open API documentation. Permissions to certain functionality can be segmented between three roles (Product Amin, Read Write, Read Only). Resources available through API access include apps, scan configs, scans, search, and vulnerabilities. Check out the API docs for more specifics.
For those interested in trying it out, apply for an API key through the API docs. Learn more about Rapid7 and its approach to SecOps at its homesite.