First Steps

• Starting your first test
• How to set up your account for the best possible results
• Scheduling your test

Scanning

• What can I scan using Detectify?
• How to set up your staging environment using ngrok and Detectify
• Is it safe to scan a production server?
• What is Autodiscovery?
• Can I use ngrok to scan my internal environment with Detectify?

View all (7)

Assets

• Assets Overview
• Working with Assets
• Adding a new asset
• Import your assets with AWS Route53
• How to add and name your scan profiles

Asset Verification

• What is a scan profile?
• Why do you require verification of domain ownership?
• Verification with txt file
• Verification with DNS (txt)

Testing

• Running Application Scanning
• What do you do during testing?
• Which ports do you scan?
• You're spamming my contact form!

Permission from hosting providers

• Permission from hosting providers
• Do I need to notify Microsoft Azure before running a Detectify scan?
• Do I need to notify Google Cloud Services before running a Detectify scan?
• Do I need to notify AWS before running a Detectify scan?
• My AWS WAF is blocking traffic coming from Detectify

Authenticated Scan

• How to scan behind login
• Scan behind login with basic auth
• Scanning behind login with a session cookie
• Scan behind login with Recorded Login
• Recorded Login: Trails service documentation

View all (6)

Surface Monitoring

• Surface Monitoring
• How do I activate Surface Monitoring?
• SSL certificate audit
• Subdomain Takeover
• Port Discovery and Scanning

View all (6)

Application Scan Settings

• Include and avoid paths
• Scan subdomains
• Request limit
• Scan as device/scan mobile websites
• How can I make the test run faster?

View all (7)

Features

• What is Forced Browsing?
• Do you have a security seal I can put on my site?

Team Settings

• Trigger testing with the API - First request
• How to start a scan using the Detectify API
• How do I add users to my team?
• How do I manage my team?
• Scan from Regional IP

Import subdomains

• Zone File / DNS Zone Transfer

Single Sign-On (SSO)

• Access Detectify using your SAML SSO provider
• How to set up SAML SSO for Detecitfy using Okta? (Detectify App)
• How to set up SAML SSO for Detecitfy using Okta? (custom solution)
• How to set up SAML SSO for Detectify with Azure?

Reports

• How can I share my report results?
• Why do you rank report entries based on CVSS?
• Vulnerabilities
• How to access CVSS v.3.1 through the API

Findings' Tags

• Tag your findings
• Blind SQL injections

Scope

• Crawled URLs (CSV file)
• Why does the list of crawled URLs differ from scan to scan?
• Fingerprinted Software
• Why am I seeing duplicate findings of the same vulnerability?

Remediation Tips

• Cross-site Scripting
• SQL Injection
• Local File Inclusion / Path Traversal
• Microsoft IIS Tilde Vulnerability
• Input Autocomplete

View all (54)

Technology

• How to allow Detectify to access your site
• Are you using any external services?
• How do you secure my information?
• Block analytics services

Account & Team Settings

• How to remove your account
• Can I change my email address?
• How to enable two-factor authentication (2FA) on your account
• How do I change the name of my team?

Other

• Where can I see my activity log?
• Can you send me some Detectify stickers?

Billing

• Payment alternatives
• Non-commercial or commercial account
• Enterprise accounts
• Refund Requests
• What happens if my payment fails?

Payment Services Directive (PSD2)

• How PSD2 affects your subscription
• Why do I need to re-authenticate my subscription?
• Why am I receiving emails from Chargebee?

Integrations

• How to set up a manual export for JIRA
• How to set up your integration with OpsGenie
• How to set up your integration with PagerDuty
• How to set up your integration with Splunk
• How to set up your integration with Trello

View all (7)

Integration Feeds

• How to set up your JIRA Cloud integration
• How to set up your integration with Slack
• How to set up an integration with Splunk

Getting Started

• Get started with Detectify
• Add a Domain
• Add a Scan Profile
• Overview
• Domains & Profiles

Findings

• Findings Page
• How to read and understand your findings
• Tag Your Findings
• Sharing/Exporting Findings
• OWASP TOP 10

Features

• Integrations
• All Tests

Authenticated Scan

• Authentication

Settings

• Profile Settings
• Scan Settings
• Teams

Trust Center: Compliance and Information Security

• Compliance
• Data centers
• Data Privacy and GDPR compliance
• Access to customer assets
• Deletion and retention time of customer data

View all (15)