The Detectify scanner works on all types of web applications, as long as there is a web interface that our crawler can interact with. This means that we cannot scan API endpoints, since our crawler will not be able to click its way through the application to gather necessary information for security testing.