Olivia
Online
AppSentinels
@appsentinelsai
Business Logic Security for APIs, AI Agents and MCP.
#APIsecurity #ApplicationSecurity #DevSecOps #CyberSecurity #AI #Infosec
Joined December 2022
573 Following
122 Followers
539 Posts
Shadow APIs multiply faster than teams can track.
Undocumented endpoints.
Unmonitored 3rd party integrations.
AI-powered exploits.
The gap between proliferation & visibility is widening.
Here's how to secure API endpoints in multi-cloud environments: https://t.co/OIjG4tqDgG
Wishing everyone a very Happy Republic Day ๐ฎ๐ณ
May this day remind us of the values that make our nation strong - unity, freedom, and progress.
Here's to a future built on innovation and integrity.
Most API security checklists are ignored after deployment.
The ones that matter? They're embedded in every pipeline, every release, every change - enforcing governance continuously, not just once.
Read the full breakdown: https://t.co/hYd9GZvpSY
Most APIs run with no security policy.
Unauthenticated endpoints.
Partner integrations w/ unrestricted access.
Mobile apps hold full database privileges.
Enforcement happens after deployment, if at all.
Learn building policies that integrate into CI/CD: https://t.co/lSoNWiHuXP
Who to follow
sris_can_c1ph3r
@Srishti_exe
Web 3 | Ethical Hacker | Smart Contract | Defender of Decentralized Systems | insta : hackthechain | check : https://t.co/Cs35k0GTKy
reap 
@Reap_AI
Upload, Get Clips, Captions, Publish: Turn long videos into social ready viral shorts in a click.
Piculets - SAP Partner in India
@PiculetsLimited
Partner's In Consulting Leading Enterprise Transformation Solutions
Every API endpoint can be secured, yet still breached, if your gateway is misconfigured.
Gateway routes auth, validates tokens, controls backend access.
Most treat it like infrastructure. Attackers see it as a front door. Here's how to secure them: https://t.co/rz0BHfdphi
API breaches don't need zero-days.
T-Mobile lost 50M records through weak auth.
Twitter exposed 5M accounts via IDOR.
Venmo leaked transactions w/o rate limiting.
Simple gaps with big consequences.
Read known breaches, what went wrong, what stops them: https://t.co/VfzWpiEx9r
WAFs weren't built for APIs.
They can't understand JSON context, correlate calls across sessions, or detect business logic abuse. Most API attacks happen through valid requests.
We cover what actually secures API endpoints - https://t.co/bnDb1RkXTD
Here's a glimpse of Day 2 & 3 at AISS 2025.
One of the highlights was Admiral Dinesh Kumar Tripathi, Chief of the Naval Staff of India, stopping by our booth.
Thank you to everyone for attending, and to the organisers for this event.
Looking forward to continued conversations!
Day 1 of AISS 2025 in Delhi!
Amazing turnout at our booth today. Security practitioners stopped by with pointed questions about gaps in their API security posture.
We're at Booth #9 on Day 2 and 3. Drop by if you're dealing with similar challenges!
You can't secure APIs with tools built for static networks.
โก๏ธ WAFs miss business logic abuse.
โก๏ธ Scanners miss chained exploits.
What matters in API security - visibility, behavioral detection, contextual control.
Read our breakdown - https://t.co/bB7OGb6V5d
We're heading to AISS 2025 in Delhi - one of India's largest cybersecurity summits.
Drop by booth #9, and we'll show you how business logic attacks work in real-world API environments, and why traditional security tools miss them completely.
To register:ย https://t.co/jnLH6vXjYZ
APIs expose business logic, not just data. Most organizations secure them with OWASP checklists and compliance boxes.
Attackers exploit this gap using valid API calls that scanners miss.
We cover strategic requirements beyond technical controls : https://t.co/CdybmudnYV
That's a wrap on CISO Conclave.
Great conversations with security leaders working through real challenges in API and application security.
Thank you to everyone who stopped by, and to the organizers for putting together this event.
Looking forward to continued conversations!
We're attending CISO Conclave 2025 ๐
See us showcase how to protect Model Context Protocol implementations and Agentic AI workflows from business logic exploitation.
If you're rethinking application security for autonomous systems, say hello๐
Details:ย https://t.co/xmcidVAYIt
Day 1 at OWASP Global AppSec is complete ๐
We saw constant traffic today. Security professionals asked us many questions about protecting AI systems from business logic attacks.
Meet us on Day 2 to talk about how to protect your AI-driven applications from logic-based attacks!
@gigaom has named AppSentinels a Leader and Outperformer in their 2025 API Security RadarS๐
The Outperformer classification came from autonomous capabilities most platforms do not offer.
See our positioning and view the full report here - https://t.co/ucFxAjlOJw
@gigaom named AppSentinels Leader and Outperformer in their 2025 API Security Radarย ๐
AI maps business logic to detect attacks that traditional scanners miss.
Swipe through to see our positioning and view the full report here - https://t.co/ucFxAjlOJw
Meet us at OWASP Global AppSec USA 2025 ๐
Stop by to discuss Business Logic Security for the AI era. We'll talk about business logic protection and continuous red-teaming for MCP and Agentic AI systems.
To register:ย https://t.co/NIHHN9aDZJ
See you in DC!
Dell lost 49M records through API with no rate limits.
Trello exposed 15M profiles.
Facebook got scraped at scale.
All stopped with proper WAF deployment. Most tools were built for web apps, not APIs.
Our guide ranks 25 WAF vendors by what they protect:https://t.co/VKBW3MREkQ
Traditional security tools miss API attacks - they weren't built for application context.
WAFs catch exploits. SAST scans code. But API attacks exploit business logic through valid requests that look normal.
Here's what actually matters in API security: https://t.co/3sgHu4uALa
Last Seen Users on Sotwe
ูููููููููุฏ %
Seen from Germany
Haram Addictions ๐คซ
ุนูุดูู ๐ง
Seen from United Arab Emirates
๐ฅ๐ EL RINCรN DEL MORBO ๐๐ฅ
Seen from Argentina
kf
Seen from Algeria
Yasmin Lee 18+
Seen from Canada
๐ ๐๐๐ฎ๐ง๐ ๐๐๐ฎ๐ง๐ ๐๐ฒ๐ข๐ง๐ญ
Goon Enthusiast
Seen from Egypt
Sarkar
Seen from France
ููู ุณูุฏุงูู
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.6M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
81M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69.1M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.7M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers