App and API Protection | Datadog
Detect, prioritize, and respond to application threats and vulnerabilities in production
Security

App and API Protection

Detect, prioritize, and respond to application threats and vulnerabilities in production

Datadog helps us detect attacks against our serverless applications, and triggers an automated response to block those attempts as they happen. App and API Protection was simple to enable and further configure to meet our needs.
Micha Katz

Micha Katz

CISO, Yellow Card

Feature Overview

Datadog App and API Protection allows you to manage application security risk with continuous, real-time monitoring of vulnerabilities and threats against your web applications, serverless applications, and APIs in production. Automatically integrated with APM distributed traces and code-level context, App and API Protection empowers development, operations, and security teams to build and run secure applications in production.

See also

View documentation View pricing

Works great with

Code Security Cloud SIEM

Detect and defend against attacks

  • Understand how ongoing threats targeting your web and serverless applications are propagating through your service chain with end-to-end attack flows
  • Pivot to errors, associated stack traces, and logs to easily collaborate across teams and eliminate bottlenecks
  • Slow down attackers by blocking suspicious requests or bad actors directly through the Datadog platform
Detect and defend against attacks targeting your applications, APIs, and serverless functions
Detect and defend against attacks targeting your applications, APIs, and serverless functions

Automatically discover your API attack surface

  • Gain visibility into the performance, security, and ownership of all your API endpoints in a single view
  • Surface the most targeted and at-risk endpoints to prioritize remediation efforts
  • Protect API endpoints by automatically blocking specific IPs, users, or requests
Understand the performance, security, and ownership of all your API endpoints
Understand the performance, security, and ownership of all your API endpoints

Continuously monitor for code-level vulnerabilities in production

  • Continuously identify vulnerabilities in application code serving production-level traffic, without the overhead of code scans or time-consuming testing processes
  • Identify the specific input or request that triggered the vulnerability in order to accelerate triage
  • Immediately see the exact vulnerable file, version, and line of code to reduce mean time to remediation

Focus on open source vulnerabilities which present active risk

  • Get end-to-end visibility into vulnerable open source libraries loaded across the CI and production
  • Prioritize open source library vulnerabilities in your code and at runtime with Datadog’s Severity Score, which factors in exposure, CVSS, and real-time threat activity
  • Ensure remediated vulnerabilities make it to production and avoid discrepancies between static and runtime code due to errors in the CI/CD pipeline

Report: State of DevSecOps

Learn seven key insights about the 2024 DevSecOps landscape
Read the report

Resources

Mitigate vulnerabilities from third-party libraries with Datadog Software Composition Analysis

BLOG

Mitigate vulnerabilities from third-party libraries with Datadog Software Composition Analysis

Block attackers in your apps with Datadog App and API Protection

BLOG

Block attackers in your apps with Datadog App and API Protection

Threat modeling with Datadog App and API Protection

BLOG

Threat modeling with Datadog App and API Protection

Secure serverless applications with Datadog ASM

BLOG

Secure serverless applications with Datadog ASM

What's Next

Get started today with a 14-day free-trial of App and API Protection

Learn more

Request a Demo

View documentation View pricing