Point it at any web app. The crawler maps every page, form, and endpoint. Claude examines each one like a senior pentester and delivers findings with reproduction steps and remediation advice.
3-day free trial, no credit card required
› Scan started for https://example.com
› Using model: claude-sonnet-4-6
› Crawling target (depth=3, rate=2 req/s)
› Crawl complete: 24 pages discovered
› Analysing page 1/24: /login
⚠ Found 2 vulnerabilities on /login
· Missing CSRF token on login form [high]
· Password field with autocomplete enabled [medium]
› Analysing page 2/24: /api/users
⚠ Found 1 vulnerability on /api/users
· IDOR: numeric user IDs in path, no authz check [critical]
› Analysing page 3/24: /admin
⚠ Active probing found 1 confirmed vulnerability
· XSS: payload reflected in search results [high]
Paste any URL: public site, staging environment, or internal app. Configure depth, rate limits, and authentication if needed.
The crawler maps every page, form, and endpoint. Claude examines each one for vulnerabilities, considering full page context — headers, cookies, HTML, API responses.
Each finding includes a severity score, exact reproduction steps, and remediation guidance.
Signature-based scanners miss logic flaws, auth bypasses, and novel attack patterns. AI reasoning finds what rules can't.
Claude reads HTML structure, HTTP headers, cookies, forms, and API responses together — finding logic flaws and auth bypasses that signature-based scanners miss.
Playwright-powered crawler discovers every page, form, endpoint, and SPA route. Up to 50 pages per scan with configurable depth.
Optional fuzzing injects XSS, SQLi, path traversal, and open redirect payloads to confirm exploitability — not just flag suspicion.
Provide credentials once and the crawler handles session management to test your authenticated attack surface, including admin panels and protected APIs.
Every page analysed, every finding surfaced, and cost tracked — streamed to your dashboard as the scan runs.
Reports include severity ratings, reproduction steps, and concrete remediation advice for every finding.
16 vulnerability categories across the OWASP Top 10 and beyond.
Every vulnerability includes evidence, reproduction steps, and a concrete fix.
Description
The /api/users/[id] endpoint returns full user records including email, address, and payment info without verifying the requesting user owns the resource. Sequential integer IDs make mass enumeration trivial.
Reproduction steps
/api/users/1, /api/users/2, …Remediation
Enforce ownership check server-side: compare the requested resource's owner ID against the authenticated session user before returning data. Use opaque UUIDs instead of sequential integers.
Bring your own Anthropic API key and pay a single platform fee. No hidden charges — your AI costs go directly to Anthropic.
Connect your Anthropic API key. You pay Anthropic directly for scan usage — the $9 covers the platform.
3-day free trial, no credit card required
AI Vulnerability Scanner detects 16+ vulnerability categories including XSS (cross-site scripting), SQL injection, IDOR (broken object-level authorisation), CSRF, SSRF, broken authentication, JWT issues, CORS misconfigurations, missing security headers, insecure cookies, path traversal, exposed admin endpoints, mass assignment, verbose errors, open redirects, and information disclosure.
Traditional vulnerability scanners rely on signature databases and pattern matching, which miss logic flaws, authorisation bypasses, and novel attack patterns. AI Vulnerability Scanner uses Claude AI to reason over the full context of each page - HTML structure, HTTP headers, cookies, forms, and API responses - identifying security issues that rule-based tools cannot detect.
Most scans complete in 2–10 minutes depending on site size and selected model. A Haiku-powered scan of a 10-page site typically takes 2–3 minutes. A deep Sonnet analysis of a 50-page application may take up to 10 minutes. All scans stream live results to your dashboard as findings are discovered.
Yes. AI Vulnerability Scanner supports authenticated scanning. Provide your credentials once and the Playwright-based crawler handles session management automatically, scanning your entire authenticated attack surface - including user dashboards, admin panels, and protected API endpoints.
AI Vulnerability Scanner is designed for authorised security testing with configurable rate limits (default 2 requests per second) to minimise impact on production systems. Active probing can be disabled for a passive read-only analysis. Always ensure you have explicit written permission from the site owner before scanning any target.
The BYOK plan at $9/month lets you connect your own Anthropic API key to AI Vulnerability Scanner. Your scan costs are billed directly by Anthropic to your account. You only pay AI Vulnerability Scanner the $9 platform fee. This is ideal if you already have an Anthropic API subscription or want full cost transparency.
Paste a URL, pick a model, and you'll have a full vulnerability report in under 10 minutes.
Start your free trial3-day free trial, no credit card required