Pynt aims to achieve this by making it simpler and more automatic for developers and security experts to test the security of their APIs. The Tel Aviv-based business revealed today that it has secured a $6 million seed round of funding, which was led by early-stage fund Joule Ventures and included Dallas VC and Honeystone VC.
Co-founders of the business, in addition to Schneider, include CTO Ori Goldberg, CSO Golan Yosef, and CPO Ofer Hakimi. The vehicle cybersecurity solution for Harman was originally developed by this same team.
Because there is a shortage of cybersecurity experts, Pynt integrates with programs like Postman and Newman, which many teams already use to test their internal and external APIs. This automates API security testing. Abhinav Asthana, the CEO and co-founder of Postman, is a Pynt angel investor.
Users of Pynt can use the Newman command line wrapper or the Postman app to access the service. The service can base its security testing on the functional tests already created by a team. By default, it may check for the most prevalent OWASP flaws, such as SQL injections, local file access, user data leakage to other users, and ignored authentication tokens.
“For good reason, API security is on the minds of both security experts and business stakeholders. It’s like opening the doors of your castle when you set up an API for your software and data. The ‘door manufacturers‘ and ‘guards‘ should share responsibility for making these doors secure by design and well-guarded, according to Shneider.
He added that Pynt can give teams more visibility into their overall security posture because it is aware of all the APIs a company is using and exposing. “With Pynt, you’re not only identifying vulnerabilities early on but also equipped to proactively handle them throughout your API’s journey,” the man stated. It’s all about protecting your APIs while providing you with the resources and assistance you need to navigate your security journey from the very beginning of development.
The 10-person business, which is already used by several Fortune 500 companies, intends to use the fresh money to continue working “on a self-serve platform that magically finds the security issues and fixes them automatically,” as Shneider phrased it.
Many of Pynt’s essential features are included in its free community version, but extras like the API catalog, single sign-on support, and API gateway integrations are only available as part of the company’s expensive enterprise plan.
According to Brian Rosenzweig, founding partner at Joule Ventures, “Pynt’s distinct approach to securing APIs pre-production is the next natural step for the growing number of businesses aiming to embrace ‘ shift left’ best practices. This Pynt team is well-equipped to make a substantial impression in the API Security market thanks to its excellent blend of expertise, technological know-how, and vision.
[Source of Information: Techcrunch.com]
