Skip to content

Custom Security Rules

This menu provides detailed guidance on writing custom rules for ApiFort and ApiStrike platforms:

  • ApiFort: Focused on detecting and blocking API threats in real-time using custom security rules.
  • ApiStrike: Designed for simulating attack scenarios against APIs to test resilience and identify weaknesses.

Each rule type has its own structure, logic, and execution method. Use the dedicated guides to understand how to define detection patterns, configure payloads, validate responses, and align your rules with standards such as OWASP and CWE.

These rule writing guides are intended for developers, testers, and security teams aiming to tailor API security policies or simulate complex attack flows.