
middleBrick
Wallarm
Metlo API Security
PromptGuard
SecureStack
Code42
Symantec Data Loss Prevention
Microsoft BitLocker
Paubox
OpenSSH
GravityZone
Virtru
Arcserve UDP
middleBrick scans any API endpoint and returns a security risk score (A+ through F) with actionable findings โ no agents, no config, no credentials required.
Submit a URL or OpenAPI spec. middleBrick runs 12+ security checks in parallel and delivers a prioritized report with severity ratings and remediation guidance in under 60 seconds. It tests what an unauthenticated attacker would see โ black-box, zero setup.
The only self-service scanner with dedicated LLM checks: * System prompt leakage detection * Prompt injection testing * Jailbreak probes * Data exfiltration vectors * Excessive agency and cost exploitation
OWASP API Security Top 10: * Access Control: BOLA/IDOR and BFLA. * Authentication: Multi-method bypass detection and JWT analysis. * Data Exposure: PII, API keys, and credit cards with Luhn validation. * Technical Vulnerabilities: Input Validation, Rate Limiting, SSRF, and Security Misconfiguration. * Modern Architecture: GraphQL vulnerabilities, Encryption & Transport Security, and API Inventory gaps. * Specifications: Full OpenAPI 2.0/3.0/3.1 spec analysis included.
npx middlebrick scan in your terminal or CI pipeline.
middleBrick
Code42No features have been listed yet.
No middleBrick videos yet. You could help us improve this page by suggesting one.
middleBrick's answer
middleBrick assigns a quantitative risk score (0-100) to any API in seconds, not weeks. It covers OWASP API Top 10, GraphQL, and LLM/AI-specific security checks in a single scan. It integrates directly into developer workflows via CLI, GitHub Action, and MCP server for AI assistants โ no sales calls, no setup meetings.
middleBrick's answer
Most API security tools require enterprise contracts, complex onboarding, or inline proxies. middleBrick is fully self-service: scan any API endpoint in minutes even with a free account.
middleBrick's answer
DevSecOps engineers, API developers, and security teams at startups and scale-ups who need to test their APIs for vulnerabilities without long procurement cycles. Also teams building AI/LLM-powered products who need to secure their model-facing APIs.
Based on our record, Code42 seems to be more popular. It has been mentiond 1 time since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
It's not a big surprise, given that Code42 (the parent company) pretends they have nothing to do with Crashplan. They've done a massive pivot to some kind of security company, with ZERO references to the OG product of Crashplan on code42.com, which (I'm guessing) is the bulk of their revenue. If you do a site search on google, you'll find some old links, but they just push you over to crashplan.com. Source: about 4 years ago
Wallarm - Wallarm WAF is AI-powered Platform that automates real-time application protection combines Active Threat Verification engine with a DevOps friendly NG-WAF and security testing for websites, microservices and APIs across public and private clouds.
Symantec Data Loss Prevention - Fully protect your data with the comprehensive detection technologies and unified policies of Symantec's industry leading Data Loss Prevention (DLP).
Metlo API Security - Open Source API Security Platform
Microsoft BitLocker - BitLocker is a full disk encryption feature included with Windows Vista and later.
PromptGuard - The firewall for AI prompts.
Paubox - Paubox provides HIPAA compliant email encryption without the hassle of extra steps.