DEV Community

Cover image for Free website vulnerability scanner for developers
Adriel Araujo
Adriel Araujo

Posted on • Originally published at blog.hackmetrix.com

Free website vulnerability scanner for developers

Hackmetrix team is convinced that security can (and must!) be a part of the development process, without the necessity of paying a security expert, or spending late nights focused on security and thereby putting sprints at risk.

So, whatโ€™s new in Hackmetrix?

See full post

Top comments (2)

Collapse
 
antogarand profile image
Antony Garand

Disclaimer: You are the CEO of Hackmetrix, therefore this is pretty biased

I'm wondering what exactly are you checking on the web application.

We perform more than 200 vulnerability checks using the main scanners of the market

What exactly are you testing here?

Known vulnerabilities on CMS (Ex: WpScan)? Generic vulnerabilities in the page forms and inputs?

What scanners are you using, and what is the difference between using them myself versus using your website?

Collapse
 
adrielaraujoar profile image
Adriel Araujo

Hi Antony

Thanks for your questions!

We cover OWASP Top 10 . That means we find a wide variety of flaws, including SQL, LDAP, XPATH and NoSQL injections, Cross Site Scripting flaws, broken session management, remote code and command execution, malware, etc

What scanners are you using, and what is the difference between using them myself versus using your website?

We integrate on-premise, open-source and tailor-made the scanners in the same project (except WPScan because it sucks), we optimize their tests times, executing them in less than an hour, and finally we eliminate most of the duplicate and false positives, so you can see the results in a better UX.