Vulnerability scanner 
without compromises

Crashtest Security’s Dynamic Application Security Testing (DAST scanner) offers you savings across the board. In addition, it allows you to automate and integrate vulnerability scanning in your development process, reducing manual work to the minimum.

• XSS Scanner
• SQLi Scanner
• SSL/TLS Scanner
• CSRF Scanner
• JavaScript Scanner
• DAST Scanner
• API Scanner
• OWASP Scanner
• HIPAA Scanner
• XXE Vulnerability Scanner
• Ethical Hacking Software
• Black-box Security Scanner
• Heartbleed Scanner
• Portscan Security Scanner
• URL Fuzzer Scanner
• HTTP Security Header Scanner
• Remote File Inclusion Scanner
• Fingerprinting Scanner
• Microservices Security Scanner
• Local File Inclusion Scanner
• Privilege Escalation Scanner
• Command Injection Scanner

Crashtest Security’s dashboard gives you visibility into your scan target with an easy-to-use interface, remediation advice, and historical performance. The dashboard also sorts the security vulnerability based on the risk level – what is critical and with medium priority based on OWASP Top 10. Available report formats to easily share them with team members, executives, and clients:

• PDF
• JSON/XML
• CSV

Some web applications are too big, and they might have parts that should be excluded from the vulnerability scan. On the other hand, some parts are safe to scan. Crashtest Security offers you the ability to determine which parts of your web app or API should be checked and which should be excluded. You can also group URLs and augment or narrow down your scan targets.

Crashtest Security’s vulnerability scanner allows you to understand better your page structure and web app. In addition, our Quick Security Audit helps you assess the general security health of your web app so you can plan a Full Security Audit in the best way possible.

A state-of-the-art vulnerability scanner for modern web apps and APIs – Crashtest Security runs automated DAST scanning HTML-based web apps including JavaScript vulnerability scanner, AJAX, HTML5, Multi-Page and Single-Page Applications, and APIs.

• DAST Scanner
• JavaScript Scanner
• API Scanner
• OWASP Top 10 Scanner

Crashtest Security offers a rapid cybersecurity hygiene scan tool benchmarking against OWASP Top 10. Our Quick Security Scans become handy when you quickly check your web app and have the results right away.

• SSL/TLS validity
• Expired certificates
• HTTP headers
• Fingerprinting

Web applications often include third-party or open-source parts like languages, content management systems (CMS like WordPress, for example), web servers, etc. Crashtest Security’s vulnerability scanner can also scan third-party components in your web application and thoroughly assesses their security level.

Modern web apps require authentication to ensure that sensitive user data is secure. However, this approach may reflect on the vulnerability scanners’ ability to assess the application properly. Crashtest Security supports many authentication methods – from login forms to parameter, scripting, SAML, OAuth 2, DNS and manual authentication.

Crashtest Security’s vulnerability scanner integrates easily into your current development toolchain and monitoring. This approach unmasks your complete security and compliance exposure, granting full transparency within your organization and protecting you from potential cyberattack risks all in one tool.

• All integrations