What Hackers Don’t Want You To Know: How to Maximize Your API Security

Mar 5, 2020, 12:00 – 2:00 AM


With the number of APIs increasing constantly right along with the number of cyber attacks, API security has never been so important to success in an enterprise. This Meetup will cover 3 levels for protecting your API: 1. API Gateway security 2. Infrastructure security or web application firewall (WAF) 3. Automated threat detection as last line of defense

About this event

We will look at how API security works with MuleSoft including the API development lifecycle and implementing security policies on a live API from Anypoint Platform API Manager. We will also display the monitoring capabilities from API Manager and what a policy violation looks like.

Then, we will have some fun by simulating hacks on our own API. We will simulate some common attacks and how API Manager and/or a WAF can block these common attacks.

From there, we will dive even deeper by simulating very advanced attacks like OAuth token hijacking, data theft, and DoS attacks that fly under the SLA radar. This is where we will implement an AI engine like PingIntelligence’s Anypoint integration custom API policy to show how a MuleSoft API can use an AI software like PingIntelligence to discover and model normal behavior for your APIs to block and report on advanced attacks.


  • Aaron Lieberman

    Big Compass

    Principal Consultant


  • Ruman Khan

    Acumen Solutions

    Senior Architect



Thursday, March 5, 2020
12:00 AM – 2:00 AM UTC


  • Naga Vasavi Puchakayala

    Senior Software Engineer


AVIO Consulting logo

AVIO Consulting

Contact Us