Skip to content

Getting Started with Escape

Escape helps Security Teams quickly find and protect every Web Application and API they expose, with no need for complex setup or network changes. By focusing on Security Teams in medium and large organizations, Escape addresses the unique challenges these experts face when managing large and growing technology stacks. The platform is provided as a SaaS solution and centers around three key capabilities:

  • Agentless Inventory (APIs and Web Apps EASM): Automatically discovers, classifies, and tracks all application assets exposed by an organization (without the use of agents or network traffic analysis).
  • Security Testing at Scale: Runs Security Testing on the application assets discovered by the Inventory.
  • Modern DAST in CI/CD (Dynamic Application Security Testing): Runs business logic security tests on APIs and Web Applications (including SPAs) and provide remediations directly in the CI/CD pipeline, starting at the development phase.

By providing full visibility and continuous testing, Escape helps organizations stay ahead of potential risks, ensuring customers gain a more complete and proactive approach to Application Security.

Escape operates outside of your stack and is safe for production environments. This external operation means there is no downtime for your applications, safeguarding both your operations and your customers.

Index

  Inventory

  •    Quick Start

  •    API Discovery from Code

  •    Internal Networks

  •    Integrations 16

  •    Expert Usage 4

  DAST Scanning

  •    Start a new Scan

  •    Understanding Results

  •    Analyze Logs

  •    Schedule Scans

  •    DAST in CI/CD 12

  •    Authentication 14

  •    Custom Rules 7

  •    Expert Usage 12

  •    Supported Security Tests 165

  Automation & Ticketing

  •    Email Notifications

  •    Slack Notifications

  •    Discord Notifications

  •    Teams Notifications

  •    Webhook Notifications

  •    Jira Integration

  Enterprise Features

  •    Support and SLA

  •    Registration Requirements

  •    SSO and Identity Federation

  •    Role-Based Access Control

  •    Audit Logs

  •    Private Locations

  •    Deployment Options

  •    Rotating Encryption

  •    Public API