API Discovery
      Back to home
      1. Help Center
      2. Attack Surface Management
      3. API Discovery

      How does API Discovery work in Edgescan?

      API Discovery works as part of Edgescan ASM and discovers potential APIs on your assets facing the internet.

      Version Number: v1.0.1

      Published Date: 10 Jul 2025

      ____________________________________________________________________________

      Description

      Edgescan's API discovery service is performed vs an organisations external infrastructure. Using multilayer probing technology which produces a confidence interval to demonstrate the level of confidence Edgescan has that an API was discovered.

      Clients are alerted in real time (if required) once an new API is discovered.

      API detection is wrapped up in Edgescan’s ASM. With fast network host discovery and asynchronous port scanning to help you identify and monitor assets and network changes. It supports service and OS detection and can generate alerts based on what you need to know.

      How it works?

      Vulnerability management, ASM & API discovery all run independently.

      • API Discovery: Every 24 hours
      • ASM: Every 2-4 hours
      • Vulnerability management: As often as you require.

      Multi-layered checks are applied on all live IP’s and across entire CIDR IP ranges.

      Discovery of unknown API’s can be complex but the Edgescan multi-layered approach to discovering API’s results in a confidence interval describing if an API is actually present.

      API discovery works by applying specialised probing traffic across each endpoint and evaluating the results.

      This multi-layered approach results in detection of API’s based on responses to the probes sent.

      API Discovery provides a read-only data-steam which will be available via:

      • The Edgescan web platform.
      • The Edgescan API on the hosts endpoint.

      API Detection Tests

      • Common API routes
      • API descriptor files (Swagger/WADL)
      • SOAP protocol detection
      • JSON/XML response analysis
      • API endpoints Metadata
      • API routes in HTTP attributes
      • Cookie based API indicators
      • Known API format requests
      • HTTP status type checks
      • TLS Certificate checks
      • API format Requests (SOAP/JSON etc)
      • Standard and Non-Standard API indicators
      • Manifest file detection
      • Hostname checks
      • Cert common name checks