What can I scan using Detectify?

Detectify Surface Monitoring and Application Scanning help you get an overview of your attack surface and find vulnerabilities. 


Surface Monitoring continuously monitors and tests your Internet-facing subdomains and detects exposed files, vulnerabilities, and misconfigurations.


Application Scanning uses a web crawler to explore which parts of your web application should be included in security testing. To do this, it needs a web interface to interact with. This means that Application Scanning cannot crawl API endpoints, since our crawler will not be able to click its way through the application to gather necessary information for security testing.

For JavaScript heavy sites, or SPAs, To ensure better coverage of your SPA, we recommend that you turn on our Crawling beta features, which are more optimized for covering such sites.