143+ Security Scanners
One Platform

Detects error-based SQL injection vulnerabilities by analyzing database error messages in application responses.

Identifies blind SQL injection using boolean-based techniques to infer database information.

Detects time-based blind SQL injection by measuring response delays from injected sleep commands.

Exploits UNION-based SQL injection to extract data from database tables.

Tests for stacked query SQL injection allowing multiple statement execution.

Detects reflected cross-site scripting vulnerabilities where malicious scripts are reflected in responses.

Identifies stored XSS vulnerabilities where malicious scripts persist in the application.

Detects DOM-based XSS vulnerabilities in client-side JavaScript code.

Tests for mutation XSS (mXSS) that bypasses sanitization through browser parsing quirks.

Identifies cross-site request forgery vulnerabilities and token implementation weaknesses.

Detects local file inclusion vulnerabilities allowing access to server files.

Tests for remote file inclusion allowing execution of external malicious scripts.

Identifies directory traversal vulnerabilities using ../ sequences to access restricted files.

Detects XML External Entity injection vulnerabilities in XML parsers.

Tests for server-side request forgery allowing requests to internal resources.

Exploits SSRF to access cloud provider metadata services (AWS, GCP, Azure).

Tests SSRF with protocol smuggling techniques to bypass restrictions.

Detects insecure direct object references allowing access to other users' data.

Identifies vertical privilege escalation through insecure object references.

Tests for unvalidated redirects that can be used in phishing attacks.

Detects HTTP response splitting and header injection vulnerabilities.

Tests for carriage return line feed injection in HTTP headers.

Identifies overly permissive CORS policies that expose sensitive data.

Tests for missing X-Frame-Options and clickjacking vulnerabilities.

Analyzes CSP headers for misconfigurations and bypass opportunities.

Checks for missing SRI on external scripts and stylesheets.

Analyzes cookie attributes for Secure, HttpOnly, and SameSite flags.

Tests for session fixation vulnerabilities in session management.

Identifies weaknesses that could allow session token theft.

Tests file upload restrictions for extension and content-type bypasses.

Detects dangerous file upload capabilities allowing malicious file execution.

Identifies exposed directory listings revealing sensitive files.

Detects sensitive information leakage in responses, errors, and headers.

Tests for exposed source code through backup files and misconfigurations.

Identifies applications running in debug mode exposing sensitive information.

Analyzes error messages for information disclosure and stack traces.

Tests for web cache poisoning vulnerabilities in CDN and cache layers.

Identifies web cache deception attacks exposing sensitive cached content.

Tests for host header manipulation in password reset and routing.

Identifies access control bypasses through HTTP method manipulation.

Tests for parameter pollution vulnerabilities in request handling.

AI-powered detection of application-specific business logic vulnerabilities.

Detects mass assignment vulnerabilities allowing modification of protected attributes.

Tests for unsafe deserialization leading to remote code execution.

Detects SSI injection vulnerabilities in web servers.

Detects MongoDB-specific injection vulnerabilities in query operators.

Tests for Redis command injection and Lua script vulnerabilities.

Identifies CouchDB query injection and design document attacks.

Detects Cassandra CQL injection vulnerabilities.

Tests for server-side template injection in Jinja2/Flask applications.

Detects template injection in PHP Twig templates.

Identifies FreeMarker template injection in Java applications.

Tests for Apache Velocity template injection.

Detects Pebble template engine injection vulnerabilities.

Tests for LDAP injection in authentication and directory queries.

Detects XPath injection vulnerabilities in XML data queries.

Identifies operating system command injection vulnerabilities.

Tests for PHP code injection through eval() and similar functions.

Detects Python code injection via exec(), eval(), and pickle.

Identifies Ruby code injection through eval and system calls.

Tests for EL injection in Java EE applications.

Detects OGNL injection in Struts and other Java frameworks.

Identifies Spring Expression Language injection vulnerabilities.

Tests for Log4j JNDI injection vulnerability (CVE-2021-44228).

Detects email header injection for spam and phishing attacks.

Tests for JWT 'none' algorithm vulnerability allowing token forgery.

Detects JWT algorithm confusion attacks (RS256 to HS256).

Brute forces weak JWT signing secrets for token forgery.

Tests for JWT key injection through jku/x5u header manipulation.

Identifies JWT implementations that don't properly validate expiration.

Tests OAuth implementations for open redirect vulnerabilities.

Detects missing or weak OAuth state parameter validation.

Tests for OAuth scope manipulation and privilege escalation.

Identifies SAML signature validation vulnerabilities.

Tests for XXE vulnerabilities in SAML assertion processing.

Tests two-factor authentication bypass through backup code weaknesses.

Identifies 2FA race conditions allowing code reuse.

Tests for host header poisoning in password reset flows.

Analyzes password reset tokens for predictability and timing attacks.

Tests rate limiting and account lockout mechanisms.

Evaluates defenses against automated credential stuffing attacks.

Tests for default usernames and passwords on services.

Identifies vertical and horizontal privilege escalation paths.

Tests for time-of-check to time-of-use race conditions.

Exploits race conditions to bypass rate limits and quotas.

Tests for double-spend vulnerabilities in financial operations.

Detects CL.TE HTTP request smuggling vulnerabilities.

Tests for TE.CL HTTP request smuggling attacks.

Identifies TE.TE request smuggling through header obfuscation.

Tests for HTTP/2 downgrade and smuggling attacks.

Exploits enabled GraphQL introspection for schema disclosure.

Tests GraphQL batching for brute force and DoS attacks.

Identifies GraphQL nested query DoS vulnerabilities.

Tests for injection vulnerabilities in GraphQL resolvers.

Detects cross-site WebSocket hijacking vulnerabilities.

Tests for injection attacks through WebSocket messages.

Identifies WebSocket authentication and authorization flaws.

Detects JavaScript prototype pollution vulnerabilities.

Tests for DOM clobbering attacks affecting JavaScript execution.

Identifies insecure postMessage implementations.

Tests for PDF injection and XSS in generated PDFs.

Detects XSS through SVG file uploads and inline SVG.

Identifies timing-based information disclosure vulnerabilities.

Tests for side-channel vulnerabilities in cryptographic operations.

Identifies dangling DNS records vulnerable to subdomain takeover.

Tests for dependency confusion attacks in package managers.

Identifies command injection in CI/CD pipeline configurations.

Tests for injection vulnerabilities in GitHub Actions workflows.

Comprehensive TCP port scanning with service detection.

UDP port scanning for common services and backdoors.

Identifies running services and version information.

Analyzes TLS configuration, cipher suites, and certificate validity.

Tests for protocol downgrade vulnerabilities (POODLE, DROWN).

Monitors Certificate Transparency logs for unauthorized certificates.

Tests for unauthorized DNS zone transfer (AXFR).

Identifies vulnerabilities to DNS rebinding attacks.

Checks DNSSEC configuration and validation.

Tests SMTP servers for open relay and security issues.

Identifies FTP security issues including anonymous access.

Analyzes SSH configuration for weak algorithms and settings.

Tests for SMB vulnerabilities including EternalBlue.

Identifies RDP security issues including BlueKeep.

Tests SNMP for default communities and information disclosure.

Tests API endpoints for authentication bypass vulnerabilities.

Evaluates API rate limiting implementation and bypass techniques.

Detects mass assignment vulnerabilities in API endpoints.

Tests for BOLA/IDOR vulnerabilities in REST APIs.

Identifies broken function level authorization in APIs.

Detects APIs returning more data than necessary.

Tests for resource exhaustion and DoS in APIs.

Identifies security misconfigurations in API implementations.

Tests for various injection vulnerabilities in API parameters.

Discovers undocumented or deprecated API endpoints.

Identifies misconfigured S3 buckets with public access.

Tests for overprivileged IAM roles and policies.

Analyzes EC2 security groups for overly permissive rules.

Tests serverless functions for security issues.

Identifies Azure Blob storage with public access.

Tests Azure Active Directory for security weaknesses.

Detects misconfigured Google Cloud Storage buckets.

Analyzes GCP IAM policies for security issues.

Tests Kubernetes clusters for security misconfigurations.

Identifies container escape vulnerabilities and privilege escalation.