Easy-to-use automated web application and API vulnerability scanner Starting at $118/mo.
We scan your web application or API for more than 5000 vulnerabilities and we always adding new checks. We look for classes of vulnerabilities so we can handle your custom-built software, but we also find well-known vulnerabilities. Vulnerabilities are ranked by severity; include a tailored how-to fix and a history log, so you can keep track of them.
Each vulnerability includes a description, evidence of it, and helpful code or configuration snippets that you can use to fix it. We detect the technologies you use and tailor the instructions to your case. You won’t need to through a wall of text to find the fix you need.
We only report vulnerabilities that you should care, so that developers don’t waste time, This way they can focus on fixing the real problems. If the finding is unexploitable. we don’t report it.
You can schedule a daily scan and have the results sent to a Slack channel, and everything is configured in our settings. But you can integrate with anything through our easy to use API.
Our web app is powered by our API, meaning anything that can be done using the web app can also be done directly via the API. Use it to integrate our tests with your CI/CD pipeline, issue tracker or Slack (for instance).
Scans for the Log4j / Log4Shell / CVE-2021-44228 vulnerability.
The available application locations for this add-on are shown below, and depend on whether the application is deployed to a Common Runtime region or Private Space. Learn More
Region | Available |
---|---|
United States | Available |
Europe | Available |
Region | Available | Installable in Space |
---|---|---|
Virginia | Available | |
Oregon | Available | |
Frankfurt | Available | |
Tokyo | Available | |
Sydney | Available | |
Dublin | Available |
To provision, copy the snippet into your CLI or use the install button above.