BugDazz API Scanner Reviews & Product Details

The tool fits into our CI/CD and pre release workflows with adding friction. We started using it primarily to handle growing API sprawl and the need for consistent checks before releases, and it Ya’s been easy for both security and engineering teams to adopt. Scans are fast and the results are clear, which makes easier to review findings without spending unnecessary time filtering noise. Another strong point is the accuracy of the API discovery and overall signal to noise ratio. The findings are presented with enough context to make discussions between teams more productive, which has reduced back and forth during release cycles Review collected by and hosted on G2.com.

So far we have not run into any major issues. Like with any security tool, there is learning curve in understanding how to best tune scans based on different testing scenarios, but this is expected and manageable Review collected by and hosted on G2.com.

The test cases are quite good and comprehensive and the pricing fits well for regular use in our security scans. It integrates smoothly into CI/CD pipeline, and the support team comes back on reported bugs with workable fixes usually within a day or so. Review collected by and hosted on G2.com.

I’ve noticed a few minor glitches here and there, but nothing serious. Overall, I haven’t run into any major issues. Review collected by and hosted on G2.com.

It integrates really well with our CI/CD setup. The scans run automatically on certain branches and don't slow down builds. Review collected by and hosted on G2.com.

Nothing of concern as of now. We have requested a few things from their team. Review collected by and hosted on G2.com.

We were able to deploy it inside our internal network, which was a requirement for us. A lot of SaaS-based scanners wouldn't have worked for this. Review collected by and hosted on G2.com.

Infrastructure-specific guidance could be expanded in the documentation. Review collected by and hosted on G2.com.

Each report includes request/response logs, issue descriptions, and remediation advice. Developers don’t need to follow up with security to act on them. Review collected by and hosted on G2.com.

Nothing really stood out as an issue. It works fine Review collected by and hosted on G2.com.

We plugged it into our CI/CD pipeline, and its been working as expected. It doesn’t add any noticeable delay and flags issues reliably. Review collected by and hosted on G2.com.

Documentation could be clearer for Jerkins integration. Review collected by and hosted on G2.com.

The reports contain the right level of detail for both technical review and compliance documentation. We have used them during internal security reviews and they were well received. Review collected by and hosted on G2.com.

Nothing in particular so far. The tool works really well. Review collected by and hosted on G2.com.

It deal with multiple authentication types across our APIs, and BugDazz handled all of them without much setup. The token handling works well during longer scans. Review collected by and hosted on G2.com.

Nothing in particular so far and have not found any such issue. Review collected by and hosted on G2.com.

We got the scanner running quickly. It pulled in our endpoints from the API collection, and the scan results were well-structured without being overly complex. Review collected by and hosted on G2.com.

Didn’t notice anything that stood out as an issue. Review collected by and hosted on G2.com.

We’ve added BugDazz to our build process so it runs scans automatically before each release. The output is developer-friendly and doesn’t need extra explanation from the security team. Review collected by and hosted on G2.com.

Nothing came up during our use so far. Works fine. Review collected by and hosted on G2.com.