Skip to main content
Contact Us 1-800-596-4880


The 42Crunch platform provides a set of automated tools that easily secure APIs developed and hosted with MuleSoft by describing security in the API contract and enforcing those policies throughout the entire lifecycle. By delivering security as code, it enables a seamless DevSecOps experience, allowing speedy innovation without sacrificing integrity.

42Crunch platform services:

  1. Security audits: 42Crunch executes 200+ security checks against the API contract, provides detailed security scoring for prioritization, and remediation advice to help developers define the best contract possible.
  2. Once the API contract has reached a satisfactory audit score, 42Crunch will test the live API endpoints to uncover potential vulnerabilities and discrepancies of implementation against the contract.
  3. Finally, the API contract is used to protect APIs using their micro API firewall. The runtime is fully optimized to be deployed and run on any container orchestrator such as Docker, Kubernetes, or Amazon ECS. It can protect North-South and East-West microservices traffic. With minimal latency and footprint, it can be deployed against hundreds of API endpoints with minimal impact.

Company overview

42Crunch bridges the gap between API development and security teams with a simple, automated platform that provides auditing, live endpoint scanning, and micro API firewall protection. Unlike other solutions on the market, the 42Crunch platform empowers development, security, and operations teams to build security into the foundation of the API and enforce those policies throughout the API lifecycle with a set of integrated tools.