Is it safe to scan a production server?

We try to make our scanner as production-friendly as possible. This includes features like limiting the scanner speed as well as having production servers in mind when developing all our payloads, so they don’t cause any significant amount of damage if something goes wrong.

However, there are risks we cannot eliminate as our tests need to be thorough. For example, we will test every button, so if you have a button named “delete all”, we will press it.

The majority of our customers run our scans on their production servers without any problems. That said, we cannot guarantee that everything will go according to plan, which is why we recommend running Detectify on a developer instance or similar setup if possible.

Do not hesitate to contact us at if there is anything more you'd like to know about testing production servers.