Security Center Dashboard
Reading time 4 min
APIsec provides all customers with a Security Center Dashboard that summarizes information across all API applications into one view.
You can access the security center from the dashboard on the far right menu item.
High Level Statistics
At the top, the dashboard shows the following high level statistics:
Count of APIs Registered
Aggregate sum of all registered applications.
Count of Endpoints
Aggregate sum of all endpoints.
Count of Unique Endpoints
Aggregate sum of all unique endpoints based on combination of methods and endpoints.
Count of Playbooks Generated
Aggregate sum of all playbooks generated across all registered APIs.
Count of Playbooks Scanned
Cumulative count of executed playbooks across all registered APIs.
Count of Open Vulnerabilities
Current count of open vulnerabilities across all registered APIs.
Open Vulnerabilities Trend
This dashboard enables customers to see a trend of open vulnerabilities over time, compared to the number of endpoints.
Open Vulnerabilities Severity Trend
This dashboard breaks down vulnerabilities over time by severity. In the example below, Critical vulnerabilities increased in July of 2023, corresponding to ongoing onboarding efforts during that same period of time.
Active Projects Open Vulnerabilities
This dashboard breaks down vulnerabilities by severity as in the following example:
Vulnerabilities Age Matrix
This dashboard shows the vulnerabilities by duration. By default, all open vulnerabilities are shown, regardless of how long they remained open.
Adjusting the slider at the bottom of the dashboard allows customers to limit the age of vulnerabilities. In the following example, the age of vulnerabilities shown is greater than 60 days.
OWASP Top 10 Vulnerabilities
This dashboard shows vulnerabilities that are identified focused solely on the OWASP API Top 10 Categories. Example below:
List of Unscanned APIs
This dashboard allows customers to identify API projects and associated profiles that have not been scanned within the past 6 months. Scans can be initiated via a variety of mechanisms, but this list is populated with applications that have not been scanned by any mechanism, indicating a problem that needs further investigation. Hovering over the "(i)" provides additional information in the tooltip. A full report of impacted APIs is downloadable in CSV format. Example below:
Monthly Activities Summary
This dashboard highlights recent activities covering a two month period. Example below: