What do you like best about the product?

I've been using Pynt for several months now, and it has become an indispensable tool for our API security testing. Here’s a detailed look at my experience and why I highly recommend it to others in the industry.

Broad Capabilities:

Pynt offers a robust suite of features that extends beyond its notable integrations, such as Postman. What stands out is its comprehensive approach to API security testing. Whether you're working with REST, SOAP, or GraphQL APIs, Pynt has the capabilities to thoroughly test and secure them. The platform provides in-depth vulnerability assessments and compliance checks, which are crucial for maintaining the security and integrity of our applications.

Versatility and Integrations:

While Pynt's integration with Postman is a highlight, it's worth noting that its value extends much further. The tool integrates seamlessly with various CI/CD pipelines and other security tools, which enhances our workflow and ensures that security checks are a continuous part of our development process. This flexibility allows for better customization and integration into our existing systems, making security testing a natural part of our development cycle.

Clarity on Offerings:

Pynt offers a "free tier" that is particularly beneficial for small teams or individual developers. This tier provides access to essential features that allow users to get a feel for the platform's capabilities before committing to more advanced plans. It's important to clarify that while there is a free tier, some advanced features are part of the paid plans. This structure helps users scale their usage according to their needs and budget.

Ease of Use and Impact:

One of the most impressive aspects of Pynt is its user-friendly interface. The platform is intuitive, with well-organized dashboards and easy-to-navigate menus. This makes it accessible even for those who may not have extensive experience with API security tools. The visual representation of data and results is particularly helpful, allowing users to quickly understand vulnerabilities and take appropriate action.

Authentic Experience:

My experience with Pynt has been positive overall. The tool has effectively identified several critical vulnerabilities that we were previously unaware of, helping us address these issues before they could become major problems. The support team has also been responsive and helpful whenever we had questions or needed assistance, which further enhances the overall experience.

Conclusion:

In summary, Pynt is a powerful and versatile tool for API security testing. Its broad capabilities, extensive integrations, and user-friendly design make it a valuable asset for any team concerned with securing their APIs. The availability of a "free tier" allows users to explore the tool's features, and the supportive team behind it adds to the overall positive experience. I highly recommend Pynt to anyone looking to enhance their API security and streamline their testing processes.

My playlist about Pynt
https://www.youtube.com/playlist?list=PLdLZyV6tp2sqQiCyIPlBeeTCcutV5Rt09

What do you dislike about the product?

Not seen much downside about pynt. Excellent customer support team

What problems is the product solving and how is that benefiting you?

One of the most impressive aspects of Pynt is its user-friendly interface. The platform is intuitive, with well-organized dashboards and easy-to-navigate menus. This makes it accessible even for those who may not have extensive experience with API security tools. The visual representation of data and results is particularly helpful, allowing users to quickly understand vulnerabilities and take appropriate action.

What do you like best about the product?

Pynt created a very easy approach to DAST scanning by proxying network calls. This approach helps circumvent the hardest part of setting up DAST - getting authentication working in a test account. Using in CICD pipeline, we are frequently using this tool for our day to day uses. Also it provides slack community support, which caters to resolving issues faster.

What do you dislike about the product?

While the postman integration works smoothly, it would be better if you can provide out of the box HTML report, which can be readily shared with our stakeholders like CTO and VP of engineering.

What problems is the product solving and how is that benefiting you?

Pynt is easy to use API security testing solution which enables developers and testers to run the security tests against APIs to find and mitigate vulnerabilities throughout the development lifecycle. This has reduced our Infosec clearance cycle which used to take 2 days per API for signoff.

What do you like best about the product?

Pynt can easily discover APIs in the system, which will deduct the manual efforts, It is to test the security aspects of APIs. Pynt identifies vulnerabilities and is easy to implement with Selenium and Postman for testing. Easy to integrate with CI/CD pipeline for increasing the frequency of usage and provide a detailed report and good information on the vulnerability for failure tests. Finally having very good customer support(Slack)

What do you dislike about the product?

There are no dislikes at the moment and it might be about the pricing

What problems is the product solving and how is that benefiting you?

Easy to implement
Easy to integrate with Postman and Selenium
CI/CD integration is available
The detailed report is also available

What do you like best about the product?

Pynt offers easy integration into CI/CD workflows, making it simple to include security checks in the development pipeline. The tool's implementation with Docker is straightforward, enhancing its usability. We frequently use Pynt each time a modification is released for an API. Additionally, their support team is highly responsive, actively addressing any issues and considering suggestions for improvements.

What do you dislike about the product?

While Pynt is effective, it sometimes generates false positives, which can vary depending on the specific tests being run. This occasionally requires additional verification steps to ensure accuracy.

What problems is the product solving and how is that benefiting you?

Pynt has been instrumental in catching vulnerabilities early and reducing security risks in our APIs. Its easy integration with Docker and CI/CD has allowed us to automate much of our security testing, saving us time and resources. The reports it provides and the responsive support team also help us quickly tackle any issues that arise.

What do you like best about the product?

It allows security analysis to be carried out in multiple forms of integration, the best for us was the one carried out programming in Python in GitHub Workflows

What do you dislike about the product?

Nothing, allows multiple integrations and a review of all of them in one administration portal

What problems is the product solving and how is that benefiting you?

It allows you to carry out a security analysis in minutes and in an integrated way in environments where the developer can directly see the vulnerabilities that their API development has.

What do you like best about the product?

Pynt is a very good product, it tracks API security issues quickly and flawlessly, where all other solutions fail. It’s intuitive, finds only verified vulnerabilities, while other tools report on a lot of false positives, and has a broad testing coverage, that covers the most important and critical issues. I also like in particular that Pynt has an innovative approach and the solution solves the API Security problem differently than others (e..g they recently introduced LLM API vulnerability tracking capabilities).

What do you dislike about the product?

Perhaps better docs but nothing major...

What problems is the product solving and how is that benefiting you?

We develop numerous APIs at a rapid pace. Having a tool that can automatically test our creations without requiring manual intervention enhances our confidence in deploying code swiftly.

What do you like best about the product?

Pynt solution consistently introduces new features ahead of other platforms, especially DAST solutions. The integration capabilities can be implemented early in the SDLC. I know that some features were implemented since Pynt is really good at listening to customers, which always makes a good partner.

What do you dislike about the product?

there's nothing crucial that I really disappoints me in the product

What problems is the product solving and how is that benefiting you?

Pynt covers our compliance needs and completes our application security strategy with API security.

What do you like best about the product?

We heavily use APIs, and I belive it must be part of the Appsec strategy. Having used other methods in the past, I think Pynt is a game changer in the secuirty api landscape. Before it took a lot of manual work, yielding incomplete results. Pynt is integrated with our Postman environment, automatically alerts on verified vulnerabilities, with nearly zero false positives. Pynt’s technology is the most trustworthy in today's market, so I’m confident that what Pynt tracks must be remediated. The app is easy to use, integration and installation took less than a week and it works like a charm.

What do you dislike about the product?

Nothing that I encountered so far while using Pynt.

What problems is the product solving and how is that benefiting you?

Pynt is allowing me to make sure my APIs are secured - surfacing vulnerabilities in the right time, during development and before it's pushed to production. It also removed the burden of making sure I have security experts in every team.