November Product Update

This month, Equixly introduces several long-requested improvements focused on

• Scan management efficiency
• Debugging workflows
• UI refinement

These updates improve scan setup and provide greater control over extensions and scan optimization.

Smarter Scan Management

To help you maintain a clearer focus and better control over your testing life cycle, we’ve rolled out features that noticeably reduce clutter, enable quicker actions, and generally improve how you organize and interact with scan data.

Archive Scans

Archive scans to maintain a clean and organized workspace. They remain accessible when needed but stay out of active scan views for better management.

Archiving scans allows you to declutter your workspace without losing access to important historical scan data. For example, after completing a project, you can archive scans related to that project, keeping only the active scans in view, thus making it easier to focus on current tasks.

Bulk Actions

Bulk actions are now available directly from the scan table, allowing for faster, large-scale updates. You can perform actions on multiple scans simultaneously. Additional bulk management options for other tables will be available soon.

Notes for Issue Exclusions

We added a new Note field on the Issue Exclusion page to let users specify the reason or motivation for leaving out an issue from their tests.

The ability to add notes to these exclusions helps teams document the rationale behind their decisions, guaranteeing that exclusions are transparent and can be reviewed later for accountability.

Faster and More Reliable Scanning

We know that time is a critical factor in security testing. This month, we’ve focused on backend and front-end logic to make your scanning processes more robust, reliable, and faster, especially for recurring tasks.

Pre-Flight Checks

Pre-flight checks are early-stage validations that catch configuration or setup errors before a full scan is underway.

For example, if an API endpoint is unreachable or someone has incorrectly configured authentication settings, Equixly will notify you immediately. That prevents you from wasting precious time and resources on a full scan that would have otherwise failed later.

Optimized Scan Startup

Follow-up scans now launch significantly faster, thanks to improved resource handling and initialization routines.

Debugging Workflows

This latest release introduces significant upgrades to how you can investigate and refine your security findings. The new features offer a more interactive and controlled environment for manual testing and script validation.

Repeater

The long-awaited Repeater is finally here, along with a completely redesigned interface for a powerful debugging experience.

Why a new Repeater?

Testers are already familiar with manually manipulating requests using tools such as Burp Suite. Equixly’s Repeater offers a streamlined, context-aware experience that runs directly within your scan environment, removing the need to export and import requests manually. It’s the same robust request-and-response control, but integrated right into your API security workflow.

This feature allows you to manually resend and modify requests directly from your scan history. It makes it easier to reproduce findings, test specific endpoints, and experiment with request variations without having to restart a full scan.

Debug Section

We’ve also introduced a dedicated debug section for custom scripts and HTTP hooks, making it easier to test and refine scripts directly. You can view the validated HTTP request results at the project level, streamlining repeated test cycles and reducing redundant setup work.

UI and Extension Improvements

These updates make the platform easier to use and improve the effectiveness and reliability of security scanning features. We’ve introduced changes to both the visual layout and the underlying logic of our security extensions.

Refreshed User Interface

A cleaner, more consistent interface improves navigation and general usability across the entire platform.

Improved Extension Logic

We’ve refined extension descriptions and reasoning to improve reliability, resulting in more accurate and actionable scan results.

Scan Optimization

Equixly introduces preset scan configurations designed to simplify the process of tailoring scans for specific testing scenarios. This update adds new ways to control and narrow the scope of your scans using both individual extensions and purpose-built extension groups.

You can now:

• Select individual extensions to run during a scan. It provides fine-grained control over what you test. For example, you can choose to run only the BOLA extension when targeting this specific vulnerability type.

• Use new groups of extensions, such as the CI/CD group and the OWASP API Top 10 group. These groups differ from the existing “security checks” categories in their narrower scope. Their purpose is to help teams run scans focused on specific contexts.

  For example, in the context of CI/CD, development teams need fast feedback on the security of their code. For this reason, the CI/CD extensions group provides lightweight, rapid scans focused solely on the most critical vulnerabilities, making sure that security checks don’t slow down the fast-paced development cycle. It allows teams to address security issues early, without overburdening the build and deployment process.

These enhancements enable teams to run more focused and efficient scans without needing to define custom configurations.

The new improvements reinforce Equixly’s mission to deliver smarter automation and greater control over your API security testing life cycle.

Zoran Gorgiev

Technical Content Specialist

Zoran is a technical content specialist with SEO mastery and practical cybersecurity and web technologies knowledge. He has rich international experience in content and product marketing, helping both small companies and large corporations implement effective content strategies and attain their marketing objectives. He applies his philosophical background to his writing to create intellectually stimulating content. Zoran is an avid learner who believes in continuous learning and never-ending skill polishing.