Discovery
Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
apiCollectionIdstringRequiredExample:
nullResponses
200
description
application/json
post
POST /api/fetchCollectionWiseApiEndpoints HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 26
{
"apiCollectionId": "null"
}200
description
{
"endpoints": "null",
"notTestedEndpointsCount": 0,
"newCount": 0,
"oldCount": 0,
"method": "null",
"description": "null",
"severitiesCountPerCollection": "SUCCESS",
"skip": 0,
"apiCollectionId": 0,
"accessTypes": "SUCCESS",
"summaryInfoForChanges": "SUCCESS",
"filters": "null",
"url": "null",
"deMergedApis": "SUCCESS",
"filterOperators": "null",
"urls": "null",
"sortKey": "null",
"response": "{}",
"severityMapForCollection": "{}",
"sortOrder": 0,
"limit": 0,
"onlyOnceTestedEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
collectionNamestringRequiredExample:
Medium Risk APIsResponses
200
description
application/json
post
POST /api/addApisToCustomCollection HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 163
{
"collectionName": "Medium Risk APIs",
"apiList": [
{
"method": "GET",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}
]
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"deactivatedHostnameCountMap": "{}",
"criticalEndpointsCount": 0,
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": [
{
"method": "GET",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}
],
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 0,
"runDependencyAnalyser": false,
"displayName": "Password Reset APIs",
"redact": false,
"sseCallbackUrl": "null",
"description": "null",
"startTs": 1756885380,
"mcpCollection": false,
"type": "API_GROUP",
"deactivated": false,
"automated": true,
"matchDependencyWithOtherCollections": false,
"envType": "null",
"vxlanId": 0,
"tagsList": "null",
"name": "Password Reset APIs",
"userSetEnvType": "null",
"genAICollection": false,
"id": 111111130,
"isOutOfTestingScope": false,
"sampleCollectionsDropped": true,
"conditions": "null"
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"uningestedApiList": "null",
"highRiskThirdPartyEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
post
POST /api/getAllCollectionsBasic HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"riskScoreOfCollectionsMap": "{}",
"apiCount": 0,
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"deactivatedHostnameCountMap": "{}",
"criticalEndpointsCount": 0,
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"severityInfo": "{}",
"apiList": "null",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 0,
"runDependencyAnalyser": false,
"displayName": "Password Reset APIs",
"redact": false,
"sseCallbackUrl": "null",
"description": "mlewmdmweldmew",
"mcpCollection": false,
"startTs": 1756885380,
"type": "API_GROUP",
"deactivated": false,
"automated": true,
"matchDependencyWithOtherCollections": false,
"vxlanId": 0,
"envType": "null",
"tagsList": "null",
"genAICollection": false,
"name": "Password Reset APIs",
"userSetEnvType": "null",
"id": 111111130,
"isOutOfTestingScope": false,
"sampleCollectionsDropped": false,
"conditions": "null"
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"uningestedApiList": "null",
"highRiskThirdPartyEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
methodstringRequiredExample:
GETdescriptionstringRequiredExample:
ldklewmldkapiCollectionIdinteger · int32RequiredExample:
1111111111urlstringRequiredExample:
https://vulnerable-server.akto.io/api/college/revenue/32483Responses
200
description
application/json
post
POST /api/saveEndpointDescription HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 140
{
"method": "GET",
"description": "ldklewmldk",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}200
description
{
"listOfEndpointsInCollection": "null",
"notTestedEndpointsCount": 0,
"endpoints": "null",
"method": "GET",
"oldCount": 0,
"newCount": 0,
"description": "ldklewmldk",
"skip": 0,
"severitiesCountPerCollection": "SUCCESS",
"apiCollectionId": 1111111111,
"filters": "null",
"summaryInfoForChanges": "SUCCESS",
"accessTypes": "SUCCESS",
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483",
"deMergedApis": "SUCCESS",
"urls": "null",
"filterOperators": "null",
"sortKey": "null",
"severityMapForCollection": "{}",
"response": "{}",
"sortOrder": 0,
"limit": 0,
"onlyOnceTestedEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
resetEnvTypesbooleanRequiredExample:
falseapiCollectionIdsinteger · int32[]RequiredExample:
1756885433Responses
200
description
application/json
post
POST /api/updateEnvType HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 113
{
"resetEnvTypes": false,
"envType": [
{
"keyName": ",",
"lastUpdatedTs": 0,
"value": ","
}
],
"apiCollectionIds": [
1756885433
]
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": "null",
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"uningestedApiList": "null",
"highRiskThirdPartyEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
currentIsOutOfTestingScopeValbooleanRequiredExample:
falseapiCollectionIdsinteger · int32[]RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/toggleCollectionsOutOfTestScope HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 71
{
"currentIsOutOfTestingScopeVal": false,
"apiCollectionIds": [
1111111111
]
}200
description
{
"success": true
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
Responses
200
description
application/json
post
POST /api/deleteMultipleCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 38
{
"apiCollections": [
{
"id": 1756885433
}
]
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"deactivatedHostnameCountMap": "{}",
"criticalEndpointsCount": 0,
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": "null",
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 0,
"runDependencyAnalyser": false,
"displayName": "",
"redact": false,
"sseCallbackUrl": "null",
"description": "null",
"startTs": 0,
"mcpCollection": false,
"type": "null",
"deactivated": false,
"urls": "null",
"automated": false,
"matchDependencyWithOtherCollections": false,
"envType": "null",
"vxlanId": 0,
"tagsList": "null",
"name": "null",
"genAICollection": false,
"userSetEnvType": "null",
"id": 1756885433,
"isOutOfTestingScope": false,
"sampleCollectionsDropped": false,
"conditions": "null"
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
Responseobject
Sample description
post
POST /api/getSeverityInfoForCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
skipKafkastringRequiredExample:
falseharStringstringRequiredExample:
{ "log": { "version": "1.2", "creator": { "name": "ChatGPT HAR Generator", "version": "1.0" }, "entries": [ { "startedDateTime": "2025-05-12T10:00:00.000Z", "time": 120, "request": { "method": "GET", "url": "https://example.com/api/data", "httpVersion": "HTTP/1.1", "headers": [ { "name": "Accept", "value": "application/json" }, { "name": "User-Agent", "value": "HAR-Demo/1.0" } ], "queryString": [], "headersSize": 150, "bodySize": 0 }, "response": { "status": 200, "statusText": "OK", "httpVersion": "HTTP/1.1", "headers": [ { "name": "Content-Type", "value": "application/json" } ], "content": { "size": 74, "mimeType": "application/json", "text": "{\"id\":123,\"name\":\"Test Item\",\"description\":\"Sample data for HAR\"}" }, "redirectURL": "", "headersSize": 160, "bodySize": 74 }, "timings": { "send": 20, "wait": 80, "receive": 20 } } ] } }hsFilestringRequiredExample:
{ "log": { "version": "1.2", "creator": { "name": "ChatGPT HAR Generator", "version": "1.0" }, "entries": [ { "startedDateTime": "2025-05-12T10:00:00.000Z", "time": 120, "request": { "method": "GET", "url": "https://example.com/api/data", "httpVersion": "HTTP/1.1", "headers": [ { "name": "Accept", "value": "application/json" }, { "name": "User-Agent", "value": "HAR-Demo/1.0" } ], "queryString": [], "headersSize": 150, "bodySize": 0 }, "response": { "status": 200, "statusText": "OK", "httpVersion": "HTTP/1.1", "headers": [ { "name": "Content-Type", "value": "application/json" } ], "content": { "size": 74, "mimeType": "application/json", "text": "{\"id\":123,\"name\":\"Test Item\",\"description\":\"Sample data for HAR\"}" }, "redirectURL": "", "headersSize": 160, "bodySize": 74 }, "timings": { "send": 20, "wait": 80, "receive": 20 } } ] } }apiCollectionIdinteger · int32RequiredExample:
1756891710Responses
200
description
application/json
post
POST /api/uploadHar HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2931
{
"skipKafka": "false",
"harString": "{\n \"log\": {\n \"version\": \"1.2\",\n \"creator\": {\n \"name\": \"ChatGPT HAR Generator\",\n \"version\": \"1.0\"\n },\n \"entries\": [\n {\n \"startedDateTime\": \"2025-05-12T10:00:00.000Z\",\n \"time\": 120,\n \"request\": {\n \"method\": \"GET\",\n \"url\": \"https://example.com/api/data\",\n \"httpVersion\": \"HTTP/1.1\",\n \"headers\": [\n { \"name\": \"Accept\", \"value\": \"application/json\" },\n { \"name\": \"User-Agent\", \"value\": \"HAR-Demo/1.0\" }\n ],\n \"queryString\": [],\n \"headersSize\": 150,\n \"bodySize\": 0\n },\n \"response\": {\n \"status\": 200,\n \"statusText\": \"OK\",\n \"httpVersion\": \"HTTP/1.1\",\n \"headers\": [\n { \"name\": \"Content-Type\", \"value\": \"application/json\" }\n ],\n \"content\": {\n \"size\": 74,\n \"mimeType\": \"application/json\",\n \"text\": \"{\\\"id\\\":123,\\\"name\\\":\\\"Test Item\\\",\\\"description\\\":\\\"Sample data for HAR\\\"}\"\n },\n \"redirectURL\": \"\",\n \"headersSize\": 160,\n \"bodySize\": 74\n },\n \"timings\": {\n \"send\": 20,\n \"wait\": 80,\n \"receive\": 20\n }\n }\n ]\n }\n}\n\n",
"hsFile": "{\n \"log\": {\n \"version\": \"1.2\",\n \"creator\": {\n \"name\": \"ChatGPT HAR Generator\",\n \"version\": \"1.0\"\n },\n \"entries\": [\n {\n \"startedDateTime\": \"2025-05-12T10:00:00.000Z\",\n \"time\": 120,\n \"request\": {\n \"method\": \"GET\",\n \"url\": \"https://example.com/api/data\",\n \"httpVersion\": \"HTTP/1.1\",\n \"headers\": [\n { \"name\": \"Accept\", \"value\": \"application/json\" },\n { \"name\": \"User-Agent\", \"value\": \"HAR-Demo/1.0\" }\n ],\n \"queryString\": [],\n \"headersSize\": 150,\n \"bodySize\": 0\n },\n \"response\": {\n \"status\": 200,\n \"statusText\": \"OK\",\n \"httpVersion\": \"HTTP/1.1\",\n \"headers\": [\n { \"name\": \"Content-Type\", \"value\": \"application/json\" }\n ],\n \"content\": {\n \"size\": 74,\n \"mimeType\": \"application/json\",\n \"text\": \"{\\\"id\\\":123,\\\"name\\\":\\\"Test Item\\\",\\\"description\\\":\\\"Sample data for HAR\\\"}\"\n },\n \"redirectURL\": \"\",\n \"headersSize\": 160,\n \"bodySize\": 74\n },\n \"timings\": {\n \"send\": 20,\n \"wait\": 80,\n \"receive\": 20\n }\n }\n ]\n }\n}\n\n",
"apiCollectionId": 1756891710
}200
description
{
"skipKafka": true
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
post
POST /api/getLastSeenTrafficInfoForCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{
"NUMBER": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
descriptionstringRequiredExample:
mlewmdmweldmewapiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/saveCollectionDescription HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 61
{
"description": "mlewmdmweldmew",
"apiCollectionId": 1111111111
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"riskScoreOfCollectionsMap": "{}",
"apiCount": 0,
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"deactivatedHostnameCountMap": "{}",
"criticalEndpointsCount": 0,
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"severityInfo": "{}",
"apiList": "null",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 1111111111,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"usersCollectionList": {
"NUMBER": "null"
},
"mcpDataCount": 0,
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"uningestedApiList": "null",
"highRiskThirdPartyEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
post
POST /api/getSensitiveInfoForCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{
"sensitiveUrlsInResponse": 26,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"severityInfo": "{}",
"apiList": "null",
"sensitiveSubtypesInCollection": {
"NUMBER": "null"
},
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
post
POST /api/getRiskScoreInfo HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": {
"NUMBER": "null"
},
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"severityInfo": "{}",
"apiList": "null",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"usersCollectionList": {
"NUMBER": "null"
},
"mcpDataCount": 0,
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
methodstringRequiredExample:
GETstartWindowinteger · int32RequiredExample:
29280083endWindowinteger · int32RequiredExample:
29281523apiCollectionIdinteger · int32RequiredExample:
1111111111urlstringRequiredExample:
https://vulnerable-server.akto.io/api/college/revenue/32483Responses
200
description
application/json
post
POST /api/fetchIpLevelApiCallStats HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 157
{
"method": "GET",
"startWindow": 29280083,
"endWindow": 29281523,
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}200
description
{
"result": "{}",
"limit": 0,
"startWindow": 29280083,
"skip": 0,
"endWindow": 29281523,
"apiCollectionId": 1111111111,
"sensitiveSampleData": "{}",
"traffic": "{}",
"sampleDataList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
Responses
200
description
application/json
post
POST /api/deactivateCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 38
{
"apiCollections": [
{
"id": 1111111111
}
]
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"riskScoreOfCollectionsMap": "{}",
"apiCount": 0,
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": "null",
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 200,
"runDependencyAnalyser": false,
"displayName": "vulnerable_apis",
"redact": true,
"sseCallbackUrl": "null",
"description": "mlewmdmweldmew",
"startTs": 1756885374,
"mcpCollection": false,
"type": "null",
"deactivated": false,
"automated": false,
"matchDependencyWithOtherCollections": false,
"envType": [
{
"keyName": ",",
"lastUpdatedTs": 0,
"source": "USER",
"value": ","
}
],
"vxlanId": 1111111111,
"tagsList": [
{
"keyName": ",",
"lastUpdatedTs": 0,
"source": "USER",
"value": ","
}
],
"genAICollection": false,
"name": "vulnerable_apis",
"userSetEnvType": "null",
"id": 1111111111,
"isOutOfTestingScope": true,
"conditions": "null",
"sampleCollectionsDropped": true
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
collectionNamestringRequiredExample:
kResponses
200
description
application/json
post
POST /api/createCustomCollection HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 176
{
"conditions": [
{
"data": {
"apiList": [
{
"method": "GET",
"apiCollectionId": 1756891710,
"url": "https://example.com/api/data"
}
]
},
"type": "CUSTOM",
"operator": "AND"
}
],
"collectionName": "k"
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"riskScoreOfCollectionsMap": "{}",
"apiCount": 0,
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"severityInfo": "{}",
"apiList": "null",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"data": {
"endpoints": [
{
"startTs": 1756891757,
"_id": {
"method": "GET",
"apiCollectionId": 1756891710,
"url": "https://example.com/api/data"
},
"changesCount": 6
}
],
"apiInfoList": [
{
"responseCodes": [
200
],
"discoveredTimestamp": 1756891757,
"sources": {
"HAR": {
"timestamp": 1756891757
}
},
"violations": "{}",
"lastCalculatedTime": 0,
"lastTested": 0,
"description": "null",
"severityScore": 0,
"lastSeen": 1756891757,
"actualAuthType": [
"UNAUTHENTICATED"
],
"allAuthTypesFound": [
[
"UNAUTHENTICATED"
]
],
"collectionIds": [
1756891783
],
"isSensitive": false,
"id": {
"method": "GET",
"apiCollectionId": 1756891710,
"url": "https://example.com/api/data"
},
"riskScore": 0,
"apiType": "REST"
}
]
},
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 0,
"runDependencyAnalyser": false,
"displayName": "k",
"redact": false,
"sseCallbackUrl": "null",
"description": "null",
"mcpCollection": false,
"startTs": 1756891783,
"type": "API_GROUP",
"deactivated": false,
"urls": "null",
"automated": false,
"matchDependencyWithOtherCollections": false,
"vxlanId": 0,
"envType": "null",
"tagsList": "null",
"genAICollection": false,
"userSetEnvType": "null",
"name": "k",
"id": 1756891783,
"conditions": [
{
"apisList": [
{
"method": "GET",
"apiCollectionId": 1756891710,
"url": "https://example.com/api/data"
}
],
"type": "CUSTOM",
"operator": "AND"
}
],
"sampleCollectionsDropped": false,
"isOutOfTestingScope": false
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": [
{
"data": {
"apiList": [
{
"method": "GET",
"apiCollectionId": 1756891710,
"url": "https://example.com/api/data"
}
]
},
"type": "CUSTOM",
"operator": "AND"
}
],
"uningestedApiList": "null",
"highRiskThirdPartyEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
openAPIStringstringRequiredExample:
{ "title": "Akto on akto", "steps": [ { "type": "setViewport", "width": 1290, "height": 326, "deviceScaleFactor": 1, "isMobile": false, "hasTouch": false, "timeout": 40000, "isLandscape": false }, { "type": "navigate", "url": "https://app-akto.us.auth0.com/u/login?state=hKFo2SB3UzduUmpsWnVnSnpjYmptelpkaVYydWV1QmFFTjBGQqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIFluNlEtdk9qXzVRQkVtVjFEQV90NUU4VHpuVE1adnFYo2NpZNkgY0tFNFZOVXlvTG41SnVlb25kdFY2RDlmUGJKZ1ZpajM", "assertedEvents": [ { "type": "navigation", "url": "https://app-akto.us.auth0.com/u/login?state=hKFo2SB3UzduUmpsWnVnSnpjYmptelpkaVYydWV1QmFFTjBGQqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIFluNlEtdk9qXzVRQkVtVjFEQV90NUU4VHpuVE1adnFYo2NpZNkgY0tFNFZOVXlvTG41SnVlb25kdFY2RDlmUGJKZ1ZpajM", "title": "Log in | Akto saas prod" } ] }, { "type": "keyDown", "target": "main", "timeout": 40000, "key": "Meta" }, { "type": "keyUp", "key": "Meta", "target": "main", "timeout": 40000 }, { "type": "change", "value": "[email protected]", "selectors": [ [ "aria/Email address" ], [ "#username" ], [ "xpath///*[@id=\"username\"]" ], [ "pierce/#username" ] ], "target": "main", "timeout": 40000 }, { "type": "click", "target": "main", "selectors": [ [ "aria/Password" ], [ "#password" ], [ "xpath///*[@id=\"password\"]" ], [ "pierce/#password" ] ], "offsetY": 25, "offsetX": 140 }, { "type": "keyDown", "target": "main", "key": "Meta" }, { "type": "keyUp", "key": "Meta", "target": "main", "timeout": 40000 }, { "type": "change", "value": "Lollot@2", "selectors": [ [ "aria/Password" ], [ "#password" ], [ "xpath///*[@id=\"password\"]" ], [ "pierce/#password" ] ], "target": "main", "timeout": 40000 }, { "type": "click", "target": "main", "timeout": 40000, "selectors": [ [ "aria/Continue" ], [ "div.ca17d988b > button" ], [ "xpath//html/body/div/main/section/div/div/div/form/div[2]/button" ], [ "pierce/div.ca17d988b > button" ] ], "offsetY": 21, "offsetX": 173, "assertedEvents": [ { "type": "navigation", "url": "https://app.akto.io/dashboard/observe/inventory", "title": "" } ] } ] }apiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/importDataFromOpenApiSpec HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 4257
{
"openAPIString": "{\n \"title\": \"Akto on akto\",\n \"steps\": [\n {\n \"type\": \"setViewport\",\n \"width\": 1290,\n \"height\": 326,\n \"deviceScaleFactor\": 1,\n \"isMobile\": false,\n \"hasTouch\": false,\n \"timeout\": 40000,\n \"isLandscape\": false\n },\n {\n \"type\": \"navigate\",\n \"url\": \"https://app-akto.us.auth0.com/u/login?state=hKFo2SB3UzduUmpsWnVnSnpjYmptelpkaVYydWV1QmFFTjBGQqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIFluNlEtdk9qXzVRQkVtVjFEQV90NUU4VHpuVE1adnFYo2NpZNkgY0tFNFZOVXlvTG41SnVlb25kdFY2RDlmUGJKZ1ZpajM\",\n \"assertedEvents\": [\n {\n \"type\": \"navigation\",\n \"url\": \"https://app-akto.us.auth0.com/u/login?state=hKFo2SB3UzduUmpsWnVnSnpjYmptelpkaVYydWV1QmFFTjBGQqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIFluNlEtdk9qXzVRQkVtVjFEQV90NUU4VHpuVE1adnFYo2NpZNkgY0tFNFZOVXlvTG41SnVlb25kdFY2RDlmUGJKZ1ZpajM\",\n \"title\": \"Log in | Akto saas prod\"\n }\n ]\n },\n {\n \"type\": \"keyDown\",\n \"target\": \"main\",\n \"timeout\": 40000,\n \"key\": \"Meta\"\n },\n {\n \"type\": \"keyUp\",\n \"key\": \"Meta\",\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"change\",\n \"value\": \"[email protected]\",\n \"selectors\": [\n [\n \"aria/Email address\"\n ],\n [\n \"#username\"\n ],\n [\n \"xpath///*[@id=\\\"username\\\"]\"\n ],\n [\n \"pierce/#username\"\n ]\n ],\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"click\",\n \"target\": \"main\",\n \"selectors\": [\n [\n \"aria/Password\"\n ],\n [\n \"#password\"\n ],\n [\n \"xpath///*[@id=\\\"password\\\"]\"\n ],\n [\n \"pierce/#password\"\n ]\n ],\n \"offsetY\": 25,\n \"offsetX\": 140\n },\n {\n \"type\": \"keyDown\",\n \"target\": \"main\",\n \"key\": \"Meta\"\n },\n {\n \"type\": \"keyUp\",\n \"key\": \"Meta\",\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"change\",\n \"value\": \"Lollot@2\",\n \"selectors\": [\n [\n \"aria/Password\"\n ],\n [\n \"#password\"\n ],\n [\n \"xpath///*[@id=\\\"password\\\"]\"\n ],\n [\n \"pierce/#password\"\n ]\n ],\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"click\",\n \"target\": \"main\",\n \"timeout\": 40000,\n \"selectors\": [\n [\n \"aria/Continue\"\n ],\n [\n \"div.ca17d988b > button\"\n ],\n [\n \"xpath//html/body/div/main/section/div/div/div/form/div[2]/button\"\n ],\n [\n \"pierce/div.ca17d988b > button\"\n ]\n ],\n \"offsetY\": 21,\n \"offsetX\": 173,\n \"assertedEvents\": [\n {\n \"type\": \"navigation\",\n \"url\": \"https://app.akto.io/dashboard/observe/inventory\",\n \"title\": \"\"\n }\n ]\n }\n ]\n}\n",
"apiCollectionId": 1111111111
}200
description
{
"openAPIString": "{\n \"title\": \"Akto on akto\",\n \"steps\": [\n {\n \"type\": \"setViewport\",\n \"width\": 1290,\n \"height\": 326,\n \"deviceScaleFactor\": 1,\n \"isMobile\": false,\n \"hasTouch\": false,\n \"timeout\": 40000,\n \"isLandscape\": false\n },\n {\n \"type\": \"navigate\",\n \"url\": \"https://app-akto.us.auth0.com/u/login?state=hKFo2SB3UzduUmpsWnVnSnpjYmptelpkaVYydWV1QmFFTjBGQqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIFluNlEtdk9qXzVRQkVtVjFEQV90NUU4VHpuVE1adnFYo2NpZNkgY0tFNFZOVXlvTG41SnVlb25kdFY2RDlmUGJKZ1ZpajM\",\n \"assertedEvents\": [\n {\n \"type\": \"navigation\",\n \"url\": \"https://app-akto.us.auth0.com/u/login?state=hKFo2SB3UzduUmpsWnVnSnpjYmptelpkaVYydWV1QmFFTjBGQqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIFluNlEtdk9qXzVRQkVtVjFEQV90NUU4VHpuVE1adnFYo2NpZNkgY0tFNFZOVXlvTG41SnVlb25kdFY2RDlmUGJKZ1ZpajM\",\n \"title\": \"Log in | Akto saas prod\"\n }\n ]\n },\n {\n \"type\": \"keyDown\",\n \"target\": \"main\",\n \"timeout\": 40000,\n \"key\": \"Meta\"\n },\n {\n \"type\": \"keyUp\",\n \"key\": \"Meta\",\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"change\",\n \"value\": \"[email protected]\",\n \"selectors\": [\n [\n \"aria/Email address\"\n ],\n [\n \"#username\"\n ],\n [\n \"xpath///*[@id=\\\"username\\\"]\"\n ],\n [\n \"pierce/#username\"\n ]\n ],\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"click\",\n \"target\": \"main\",\n \"selectors\": [\n [\n \"aria/Password\"\n ],\n [\n \"#password\"\n ],\n [\n \"xpath///*[@id=\\\"password\\\"]\"\n ],\n [\n \"pierce/#password\"\n ]\n ],\n \"offsetY\": 25,\n \"offsetX\": 140\n },\n {\n \"type\": \"keyDown\",\n \"target\": \"main\",\n \"key\": \"Meta\"\n },\n {\n \"type\": \"keyUp\",\n \"key\": \"Meta\",\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"change\",\n \"value\": \"Lollot@2\",\n \"selectors\": [\n [\n \"aria/Password\"\n ],\n [\n \"#password\"\n ],\n [\n \"xpath///*[@id=\\\"password\\\"]\"\n ],\n [\n \"pierce/#password\"\n ]\n ],\n \"target\": \"main\",\n \"timeout\": 40000\n },\n {\n \"type\": \"click\",\n \"target\": \"main\",\n \"timeout\": 40000,\n \"selectors\": [\n [\n \"aria/Continue\"\n ],\n [\n \"div.ca17d988b > button\"\n ],\n [\n \"xpath//html/body/div/main/section/div/div/div/form/div[2]/button\"\n ],\n [\n \"pierce/div.ca17d988b > button\"\n ]\n ],\n \"offsetY\": 21,\n \"offsetX\": 173,\n \"assertedEvents\": [\n {\n \"type\": \"navigation\",\n \"url\": \"https://app.akto.io/dashboard/observe/inventory\",\n \"title\": \"\"\n }\n ]\n }\n ]\n}\n",
"importType": "null",
"uploadDetails": "null",
"uploadId": "68b8099fc74c9f211e0b9e5c",
"lastFetchedMethod": "null",
"apiInfoKeyList": "null",
"lastFetchedUrl": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
Responseobject
Sample description
post
POST /api/getCoverageInfoForCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
redactedbooleanRequiredExample:
trueapiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/redactCollection HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 46
{
"redacted": true,
"apiCollectionId": 1111111111
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": true,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"deactivatedHostnameCountMap": "{}",
"criticalEndpointsCount": 0,
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": "null",
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 1111111111,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"usersCollectionList": {
"NUMBER": "null"
},
"mcpDataCount": 0,
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
post
POST /api/getAllCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": "null",
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 0,
"runDependencyAnalyser": false,
"displayName": "Password Reset APIs",
"redact": false,
"sseCallbackUrl": "null",
"description": "null",
"mcpCollection": false,
"startTs": 1756885380,
"type": "null",
"deactivated": false,
"automated": true,
"matchDependencyWithOtherCollections": false,
"envType": "null",
"vxlanId": 0,
"tagsList": "null",
"userSetEnvType": "null",
"name": "Password Reset APIs",
"genAICollection": false,
"id": 111111130,
"isOutOfTestingScope": false,
"conditions": "null",
"sampleCollectionsDropped": true
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
apiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/fetchApiInfosForCollection HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 30
{
"apiCollectionId": 1111111111
}200
description
{
"redacted": false,
"apiInfoList": [
{
"responseCodes": [
200
],
"discoveredTimestamp": 1756885376,
"sources": {
"HAR": {
"timestamp": 1756885438
}
},
"violations": "{}",
"lastCalculatedTime": 0,
"lastTested": 0,
"description": "null",
"severityScore": 0,
"lastSeen": 1756885435,
"actualAuthType": [
"AUTHORIZATION_HEADER"
],
"allAuthTypesFound": [
[
"AUTHORIZATION_HEADER"
]
],
"isSensitive": false,
"collectionIds": [
111111129
],
"riskScore": 0,
"id": {
"method": "POST",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/v2/feePayment"
},
"apiType": "REST"
}
]
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
methodstringRequiredExample:
GETendEpochinteger · int32RequiredExample:
1756891391apiCollectionIdinteger · int32RequiredExample:
1111111111startEpochinteger · int32RequiredExample:
1756804989urlstringRequiredExample:
https://vulnerable-server.akto.io/api/college/revenue/32483Responses
200
description
application/json
post
POST /api/fetchApiCallStats HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 159
{
"method": "GET",
"endEpoch": 1756891391,
"apiCollectionId": 1111111111,
"startEpoch": 1756804989,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}200
description
{
"limit": 0,
"startWindow": 0,
"skip": 0,
"endWindow": 0,
"apiCollectionId": 1111111111,
"sensitiveSampleData": "{}",
"traffic": "{}",
"sampleDataList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
collectionNamestringRequiredExample:
kmlkmResponses
200
description
application/json
post
POST /api/createCollection HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 26
{
"collectionName": "kmlkm"
}200
description
{
"sensitiveUrlsInResponse": 0,
"shadowApisCount": 0,
"redacted": false,
"apiCount": 0,
"riskScoreOfCollectionsMap": "{}",
"lastTrafficSeenMap": "{}",
"uningestedApiCountMap": "{}",
"endpointsFromConditions": "SUCCESS",
"sensitiveUnauthenticatedEndpointsCount": 0,
"endpointsListFromConditions": "SUCCESS",
"apiStatsStart": "null",
"criticalEndpointsCount": 0,
"deactivatedHostnameCountMap": "{}",
"countForHostnameDeactivatedCollections": "SUCCESS",
"testedEndpointsMaps": "{}",
"apiList": "null",
"severityInfo": "{}",
"sensitiveSubtypesInCollection": "{}",
"hasUsageEndpoints": false,
"countForUningestedApis": "SUCCESS",
"apiCollectionId": 0,
"timerInfo": "null",
"response": {
"apiCount": 0
},
"apiCollections": [
{
"hostName": "null",
"urlsCount": 0,
"runDependencyAnalyser": false,
"displayName": "kmlkm",
"redact": false,
"sseCallbackUrl": "null",
"description": "null",
"startTs": 1756891710,
"mcpCollection": false,
"type": "null",
"deactivated": false,
"automated": false,
"matchDependencyWithOtherCollections": false,
"envType": "null",
"vxlanId": 0,
"tagsList": "null",
"userSetEnvType": "null",
"name": "kmlkm",
"genAICollection": false,
"id": 1756891710,
"isOutOfTestingScope": false,
"sampleCollectionsDropped": true,
"conditions": "null"
}
],
"mcpDataCount": 0,
"usersCollectionList": {
"NUMBER": "null"
},
"allUsersCollections": "SUCCESS",
"apiStatsEnd": "null",
"conditions": "null",
"highRiskThirdPartyEndpointsCount": 0,
"uningestedApiList": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
apiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/fetchApiInfosFromSTIs HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 30
{
"apiCollectionId": 1111111111
}200
description
{
"list": [
{
"startTs": 1756885376,
"changesCount": 11,
"_id": {
"method": "POST",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/info/department/branch"
}
}
]
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
endTimestampinteger · int32RequiredExample:
0startTimestampinteger · int32RequiredExample:
0Responses
200
description
application/json
post
POST /api/fetchEndpointsCount HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 37
{
"endTimestamp": 0,
"startTimestamp": 0
}200
description
{
"listOfEndpointsInCollection": "null",
"endpoints": "null",
"notTestedEndpointsCount": 0,
"method": "null",
"newCount": 0,
"oldCount": 0,
"description": "null",
"skip": 0,
"severitiesCountPerCollection": "ERROR",
"summaryInfoForChanges": "SUCCESS",
"accessTypes": "SUCCESS",
"apiCollectionId": -1,
"filters": "null",
"url": "null",
"deMergedApis": "SUCCESS",
"urls": "null",
"filterOperators": "null",
"sortKey": "null",
"response": "{}",
"severityMapForCollection": "null",
"sortOrder": 0,
"limit": 0,
"onlyOnceTestedEndpointsCount": 0
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
methodstringRequiredExample:
GETapiCollectionIdinteger · int32RequiredExample:
1111111111urlstringRequiredExample:
https://vulnerable-server.akto.io/api/college/revenue/32483Responses
200
description
application/json
post
POST /api/fetchSampleData HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 113
{
"method": "GET",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}200
description
{
"result": "{}",
"limit": 0,
"startWindow": 0,
"skip": 0,
"endWindow": 0,
"apiCollectionId": 1111111111,
"sensitiveSampleData": "{}",
"sampleDataList": [
{
"collectionIds": [
1111111111
],
"id": {
"method": "GET",
"bucketEndEpoch": 0,
"bucketStartEpoch": 0,
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483",
"responseCode": -1
},
"samples": [
"{\"destIp\":null,\"method\":\"GET\",\"requestPayload\":\"{\\\"email\\\":\\\"[email protected]\\\",\\\"role\\\":\\\"user\\\"}\",\"responsePayload\":\"{\\\"revenue\\\":\\\"5324584\\\"}\",\"ip\":\"null\",\"source\":\"HAR\",\"type\":\"HTTP/1.1\",\"akto_vxlan_id\":1111111111,\"path\":\"https://vulnerable-server.akto.io/api/college/revenue/32483\",\"requestHeaders\":\"{\\\"authorization\\\":\\\"JWT eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c\\\",\\\"content-length\\\":\\\"2\\\",\\\"content-type\\\":\\\"application/json\\\"}\",\"responseHeaders\":\"{}\",\"time\":\"1756885435\",\"statusCode\":\"200\",\"status\":\"OK\",\"akto_account_id\":\"1756845370\",\"direction\":null,\"is_pending\":\"false\"}"
]
}
],
"traffic": "{}"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
objectOptional
Sample description
Responses
200
description
application/json
post
POST /api/getAllUsersCollections HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 2
{}200
description
{
"NUMBER": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
methodstringRequiredExample:
GETapiCollectionIdinteger · int32RequiredExample:
1111111111urlstringRequiredExample:
https://vulnerable-server.akto.io/api/college/revenue/32483Responses
200
description
application/json
post
POST /api/loadParamsOfEndpoint HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 113
{
"method": "GET",
"apiCollectionId": 1111111111,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483"
}200
description
{
"data": {
"params": [
{
"sources": {
"HAR": {
"timestamp": 1756885376
}
},
"values": {
"elements": [
"JWT eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c"
]
},
"isPrivate": true,
"responseCode": 200,
"duration": 0,
"minValue": 2,
"param": "authorization",
"subTypeString": "GENERIC",
"id": {
"date": "2025-09-03T07:42:59",
"timestamp": 1756885378
},
"timestamp": 1756885376,
"isUrlParam": false,
"method": "GET",
"strId": "68b7f18270e50e1f92f38d44",
"isQueryParam": false,
"maxValue": 2,
"count": 1,
"apiCollectionId": 1111111111,
"sensitive": true,
"url": "https://vulnerable-server.akto.io/api/college/revenue/32483",
"lastSeen": 1756885435,
"publicCount": 0,
"isHeader": true,
"collectionIds": [
1111111111
],
"domain": "ENUM",
"subType": {
"sensitiveAlways": true,
"swaggerSchemaClass": "class io.swagger.v3.oas.models.media.EmailSchema",
"name": "GENERIC",
"superType": "STRING"
},
"queryParam": false,
"uniqueCount": 0
}
]
}
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
lastFetchedMethodstringRequiredExample:
GETapiCollectionIdinteger · int32RequiredExample:
1111111111lastFetchedUrlstringRequiredExample:
https://vulnerable-server.akto.io/api/v2/feePaymentResponses
200
description
application/json
post
POST /api/generateOpenApiFile HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 127
{
"lastFetchedMethod": "GET",
"apiCollectionId": 1111111111,
"lastFetchedUrl": "https://vulnerable-server.akto.io/api/v2/feePayment"
}200
description
{
"openAPIString": "{\n \"openapi\" : \"3.0.1\",\n \"info\" : {\n \"title\" : \"vulnerable_apis\",\n \"description\" : \"Akto generated openAPI file\",\n \"version\" : \"1.0.0\"\n },\n \"paths\" : { }\n}",
"importType": "null",
"uploadDetails": "null",
"uploadId": "null",
"apiInfoKeyList": "null",
"lastFetchedMethod": "null",
"lastFetchedUrl": "null"
}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
apiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
Responseobject
Sample description
post
POST /api/getSeveritiesCountPerCollection HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 30
{
"apiCollectionId": 1111111111
}200
description
{}Header parameters
x-api-keystringRequiredExample:
API key for authentication
your-api-key from Settings > Integrations > Akto APIsBody
Sample description
apiCollectionIdinteger · int32RequiredExample:
1111111111Responses
200
description
application/json
post
POST /api/loadSensitiveParameters HTTP/1.1
Host: app.akto.io
x-api-key: your-api-key from Settings > Integrations > Akto APIs
Content-Type: application/json
Accept: */*
Content-Length: 30
{
"apiCollectionId": 1111111111
}200
description
{
"data": {
"endpoints": [
{
"sources": {
"HAR": {
"timestamp": 1756885376
}
},
"isPrivate": true,
"responseCode": 200,
"duration": 0,
"minValue": 9223372036854675000,
"param": "email",
"subTypeString": "EMAIL",
"id": {
"date": "2025-09-03T07:42:59",
"timestamp": 1756885378
},
"timestamp": 1756885376,
"isUrlParam": false,
"method": "POST",
"maxValue": -9223372036854675000,
"isQueryParam": false,
"strId": "68b7f18270e50e1f92f38fa4",
"count": 1,
"apiCollectionId": 1111111111,
"sensitive": true,
"url": "https://vulnerable-server.akto.io/api/v2/feePayment",
"lastSeen": 1756885435,
"publicCount": 0,
"isHeader": false,
"collectionIds": [
111111201
],
"domain": "ENUM",
"subType": {
"sensitiveAlways": true,
"name": "EMAIL",
"swaggerSchemaClass": "class io.swagger.v3.oas.models.media.EmailSchema",
"superType": "STRING"
},
"queryParam": false,
"uniqueCount": 0
}
]
}
}Last updated
Was this helpful?