Sequential Abuse Detection (Beta)
Sequential Abuse Detection uncovers endpoint abuse by looking for irregular traffic across multiple endpoints.
Process
Requests tend to come to endpoints in predictable patterns. For example, a login process might consist of the following:
- A request is sent to
/login/*/enter. - It is redirected to
/login/*/verify. - It is finally redirected to
/login-successful.
When requests go straight to /login-successful, they are not following the typical pattern and might be malicious. Sequential Abuse Detection identifies these common patterns in your API traffic and flags traffic that does not match these patterns.
For more technical details, see our blog post.