Free website vulnerability scanner for developers

twitter logo ・1 min read

Hackmetrix team is convinced that security can (and must!) be a part of the development process, without the necessity of paying a security expert, or spending late nights focused on security and thereby putting sprints at risk.

So, what’s new in Hackmetrix?

See full post

twitter logo DISCUSS (2)
markdown guide
 

Disclaimer: You are the CEO of Hackmetrix, therefore this is pretty biased

I'm wondering what exactly are you checking on the web application.

We perform more than 200 vulnerability checks using the main scanners of the market

What exactly are you testing here?

Known vulnerabilities on CMS (Ex: WpScan)? Generic vulnerabilities in the page forms and inputs?

What scanners are you using, and what is the difference between using them myself versus using your website?

 

Hi Antony

Thanks for your questions!

We cover OWASP Top 10 . That means we find a wide variety of flaws, including SQL, LDAP, XPATH and NoSQL injections, Cross Site Scripting flaws, broken session management, remote code and command execution, malware, etc

What scanners are you using, and what is the difference between using them myself versus using your website?

We integrate on-premise, open-source and tailor-made the scanners in the same project (except WPScan because it sucks), we optimize their tests times, executing them in less than an hour, and finally we eliminate most of the duplicate and false positives, so you can see the results in a better UX.

Classic DEV Post from Jun 20

What does a #codeNewbie need to start/improve?

Adriel Araujo profile image