First Steps

• Starting your first test
• How long does a test take?
• How to set up your account for the best possible results
• Scheduling your test

Scanning

• What can I scan using Detectify?
• Is it safe to scan a production server?
• What is Autodiscovery?
• Can I use ngrok to scan my internal environment with Detectify?

Assets

• Assets Overview
• Working with Assets
• Adding a new asset
• Import your assets with AWS Route53
• How to add and name your scan profiles

Asset Verification

• What is a scan profile?
• Why do you require verification of domain ownership?
• Verification with txt file

Assisted Verification

• Assisted verification
• Assisted verification request - what we need to verify your domain

Other ways you can verify the asset

• Verification with Google Analytics
• Verification with DNS (txt)
• Verification with meta tag
• Verification with DNS (CNAME)

Testing

• What happens when I start a test?
• What do you do during testing?
• Which ports do you scan?
• You're spamming my contact form!

Permission from hosting providers

• Permission from hosting providers
• Do I need to notify Microsoft Azure before running a Detectify scan?
• Do I need to notify Google Cloud Services before running a Detectify scan?
• Do I need to notify AWS before running a Detectify scan?
• My AWS WAF is blocking traffic coming from Detectify

Authenticated Scan

• How to scan behind login
• Scan behind login with basic auth
• Scanning behind login with a session cookie
• Scan behind login with Recorded Login
• Recorded Login: Trails service documentation

Asset Monitoring

• Asset Monitoring
• How do I activate Asset Monitoring?
• Asset Monitoring findings
• SSL certificate audit
• Subdomain Takeover

Deep Scan Settings

• Allow and disallow paths
• Scan subdomains
• Request limit
• Scan as device/scan mobile websites
• How can I make the test run faster?

View all (6)

Features

• What is Forced Browsing?
• Do you have a security seal I can put on my site?

Team Settings

• Trigger testing with the API - First request
• How to start a scan using the Detectify API
• How do I add users to my team?
• How do I manage my team?
• Scan from Regional IP

Domain Settings

• Zone File / DNS Zone Transfer

Single Sign-On (SSO)

• Access Detectify using your SAML SSO provider
• How to set up SAML SSO for Detecitfy using Okta? (Detectify App)
• How to set up SAML SSO for Detecitfy using Okta? (custom solution)
• How to set up SAML SSO for Detectify with Azure?

Reports

• How can I share my report results?
• Why do you rank report entries based on CVSS?
• Technologies
• Vulnerabilities

Findings' Tags

• Tag your findings
• Blind SQL injections

Scope

• Crawled URLs (CSV file)
• Why does the list of crawled URLs differ from scan to scan?
• Fingerprinted Software
• Why am I seeing duplicate findings of the same vulnerability?

Remediation Tips

• Cross-site Scripting
• SQL Injection
• Local File Inclusion / Path Traversal
• Microsoft IIS Tilde Vulnerability
• Input Autocomplete

View all (54)

Technology

• How to allow Detectify to access your site
• Are you using any external services?
• How do you secure my information?
• Block analytics services

Account & Team Settings

• How to remove your account
• Can I change my email address?
• How to enable two-factor authentication (2FA) on your account
• How do I change the name of my team?

Other

• Where can I see my activity log?
• Can you send me some Detectify stickers?

Billing

• Payment alternatives
• Non-commercial or commercial account
• Enterprise accounts
• Refund Requests
• What happens if my payment fails?

Payment Services Directive (PSD2)

• How PSD2 affects your subscription
• Why do I need to re-authenticate my subscription?
• Why am I receiving emails from Chargebee?

Integrations

• How to set up a manual export for JIRA
• How to set up your integration with OpsGenie
• How to set up your integration with PagerDuty
• How to set up your integration with ServiceNow
• How to set up your integration with Splunk

View all (8)

Integration Feeds

• How to set up your JIRA Cloud integration
• How to set up your integration with Slack

Getting Started

• Get started with Detectify
• Add a Domain
• Add a Scan Profile
• Overview
• Domains & Profiles

Findings

• Findings Page
• How to read and understand your findings
• Tag Your Findings
• Sharing/Exporting Findings
• OWASP TOP 10

Features

• Integrations
• All Tests

Authenticated Scan

• Authentication

Settings

• Profile Settings
• Scan Settings
• Teams

Trust Center: Compliance and Information Security

• Compliance
• Data centers
• Data Privacy and GDPR compliance
• Access to customer assets
• Deletion and retention time of customer data

View all (14)