API Consumer Manager
API Consumer Manager is designed to consolidate your external (paid or free) and internal (open or public) APIs in a single marketplace for visibility, auditing, and billing purposes. It provides a comprehensive solution to discover unknown or shadow APIs along with security testing workbench that can also be embedded in CICD pipeline to scale the automated testing of APIs using OWASP top-10, CIS top-20 and custom security frameworks. Centralized private API marketplace allows monitoring and audit of third-party API usage, performance, billing, etc.
“We really needed API Visibility across our all products. Since many of our applications were outsourced from third parties, there was this huge gap in our security and compliance posture. TeeLab's API Discovery brought much needed transparency into our API ecosystems.”
-Nikhil Narkar, Deputy Manager, Cybersecurity at HDFC Life
Discovery is enabled via world’s first comprehensive API KnowledgeBase™ - a curated API repository of public and private APIs with advanced search capabilities. Please see API Discovery Manager data sheet for additional details.
API Consumer Manager comprises of five technical modules.
Access thousands of Public, Open APIs in a single platform. Choose APIs based on analytics derived from 15000+ API’s, 10000+ Providers, 5000+ Categories, 30000+ terms of service.
|• Search APIs (names, vendors & industries)||• Search APIs (natural language processing)|
|• Access sample API responses & codes||• Make live calls & analyze API responses|
|• Find API agreements & assess legal risks||• Conduct quality & data privacy (PII) analysis|
|• Build & manage multiple API communities||• Control access privileges via policies & roles|
Discover embedded APIs in source codes by integrating scanning agents within your CI/CD processes for better transparency, workflow management and governance of APIs across multiple products.
|• GUI tools for API Discovery||• IDE plugins for API Discovery|
|• CICD integrations (CL) for API Discovery||• Analyze programs (API code snippets)|
|• Detect URLs (in source codes)||• Specify target APIs to be discovered|
|• Workflow management for API test||• Workflow management for API agreements|
Discover hidden APIs by analyzing HTTP traffic (passing through API gateways, and application servers). This is in contrast to source code scanning (when access to application is difficult/not possible).
|• Deploy network agents to find hidden APIs||• Deploy multiple agents in a distributed way|
|• Mark target APIs for discovery & analysis||• Test discovered APIs in real time|
|• Find API details (vendors, ISPs, server locations, vulnerabilities, etc.)||• Set customized network parameters (API detection & reporting frequencies)|
|• Consolidate results from multiple networks|
Consolidate all third-party APIs (used across all your applications) in a single marketplace for better transparency, auditing and billing purposes.
|• Consolidate third-party API usage||• Audit third-party APIs for billing|
|• Generate API usage and error report||• Generate API performance & quality|
|• Improve API usage efficiency across various teams and products|
High level analytics for CxOs on API usage, organizations and their users, API hosting locations. Drilling down capability to gain insights.
|• API Consumption analytics||• API User analytics|
|• API Community analytics||• API server/ISP distributions|
|• API usage drill-down capabilities||• API billing audit (of multiple vendors)|