Aptori Proxy

Aptori Proxy enables secure, controlled testing of public deployments from inside your private network, ensuring centralized control, full visibility, and unified reporting.

Aptori Proxy

Aptori Proxy – Secure HTTP CONNECT Proxy for Cross-Network Testing

Description:
Aptori Proxy is a new module that enables secure, cross-network application testing by acting as an HTTP CONNECT proxy. It allows traffic from the Aptori Sift engine, running inside a private or restricted network, to appear as though it's originating from a public IP address or alternate vantage point. This is ideal for validating externally deployed applications from outside the firewall while reporting results to an Aptori Platform inside the internal network.

Aptori Proxy is built for secure tunneling and optimized for API security testing across hybrid or segmented environments. It gives teams more flexibility in how and where they run tests without compromising security.

Primary Benefits:

Test public endpoints from secure, internal environments.
Maintain centralized configuration, control, and audit logging.
Simulate real-world access patterns while preserving private network integrity.

Example Use Case

When Sift runs within a private network, but testing a public deployment requires requests to appear as though they originate from a public IP address, Aptori Proxy makes it possible. Test traffic is routed through a proxy hosted on a public IP, while results are securely transmitted back to the Aptori Platform inside the private network. This approach safeguards internal security while providing an accurate view of the application’s behavior under real-world conditions.

Key Features:

Secure HTTP CONNECT tunneling to destination servers
Token-based access control using JWTs issued by the Aptori Platform
One-time token enforcement to prevent replay attacks
TLS encryption using configurable certificate and key files
Customizable port (default: 8443), fully configurable via CLI

Why It Matters:
Aptori Proxy enables secure, controlled testing of public deployments from inside your private network, ensuring centralized control, full visibility, and unified reporting.

By acting as a secure bridge, it closes the gap between isolated internal testing environments and real-world application behavior.

Aptori Proxy

Group-Scoped Patterns

Endpoint Exposure Analyzer

Automations

Configurable Data Exposure Analyzer

Patterns – Custom Field & Value Rules for Smarter Testing

GitLab Integration with AI-Powered Security

Aptori Safe Mode – Active Runtime Monitoring for GRC

Expanded Vulnerability Mapping Across Security Standards and Attack Taxonomies

Policy Editor with Rego Support for Custom Security Policies

Jira Multi-Server Support with Project Mapping

EPSS Version 4 Integration for Dynamic Risk Prioritization

New Issue Status: "Fix Not Available"

Sift Version 2 Configuration via UI Wizard

Configurable Data Retention for Scan Results

Generator Sets for Dynamic Test Data

Automated GitLab DAST Export from Aptori Sift CI Scans

Improved Search Across Groups, Projects, and Assets

Enhanced Python SDK with User, Group, and Report Management Functions

New findBy API for Flexible Resource Lookup

Enhanced Projects Page with Insights and Risk Charts

User-Defined Labels for Assets, Projects, and Groups

OSV-Scanner integration is now available in Aptori

Infrastructure as Code (IaC) Scanning

Secure your cloud using AWS vulnerability scanning

Inspections

Real-Time Vulnerability Risk Scoring using EPSS and CVSSv3

Aptori Enhanced with Essential Security Scanning Capabilities

Eliminating BOLA: Automated Authorization Policy Testing Through Code-Free Descriptions

Aptori is the AI for the good guys—enabling security teams to reduce risk, accelerate secure releases, and ensure continuous compliance.

‍Aptori is the leader in autonomous application security, delivering the first deterministic AI to detect and remediate business logic vulnerabilities with precision.

The Aptori AI Security Engineer proactively identifies, prioritizes, and fixes vulnerabilities across code, APIs, applications, and cloud environments. By eliminating security backlogs and freeing engineering capacity, Aptori empowers teams to innovate faster and ship secure software at scale.

PLATFORM

Why Aptori Product Updates

RESOURCES

Insights Guides Glossary White Papers Documentation

SOLUTIONS

AI-Driven AppSec AI Security Engineer AI Code Fix Application Security Testing API Security Testing API Risk Assessment Prevent BOLA Attacks PCI DSS 4.0 Compliance

COMPANY

About Newsroom Events Contact Commitment To Security

NEWSLETTER

Get monthly news and insights in your inbox