• Any questions? Call us here!
Login
logo6
TRY IT NOW!
Get in touch
  • Any questions? Call us here!
Login
logo5
TRY IT NOW!
Get in touch

Scanning assets

Automated web scanning powered by
 Human knowledge Ethical hacking Security professionals

You will find you critical vulnerabilities & security threats with our Deep Scanning Process

Start trial
View pricing

Quick Start

Add & Scan

We will find anything for you

1. Add your domains

You can also add another assets, like repositories, websites, servers...

2. Discovery phase

With the initial assets from point 1, our tool will search & load all the possible assets.

3. Audit phase

Using all the assets found in point 2, our tool will do security checks that will generate Findings

4. Findings

Found vulnerabilities are notified in Slack & you can also check it in your user space, so you can work to fix them.

Our process never stops

Continuity

Don't be afraid of new threats

When our Scan & Audit Process comes to its end at point 4, it will start over from the Discovery Phase. So if you introduce new security threats or a new vulnerability appears, it will appear automatically reported on the platform, even if it impact on a new asset.

  • Endless Asset Discovery

    Discover all your public online assets by using our combination of different sophisticated reconnaissance techniques. See what attackers see.

    We discover the assets in:

  • Domain: Enumerate all domanis & subdomains using different techniques
  • Websites: Discover all the websites that are accesible, wich software & versions are using, itt's protocols, URLs...
  • Hosts: List all the servers, it's ervices & versions, open ports & exposure.
  • Repositories: Connect your Version Control Services & import all your repositories to enumerate all the libraries, dependences & software, for later statical code analysis.
  • Certificates: Keep the track of the certificates, it's ciphers, protocols & expiration dates

  • Evolving Security Audits

    Test the security of your assets with the latest vulnerabilities and attack vectors in a continuous and automated way.

    Our platform uses CVE, CWE & CVSS enumeration to reference the kind of vulnerabilities & it's severity, following the industry standards.

    We are constantly updating our databases, so if you get a new vulnerability, you will find it quickly!

  • Clear Vulnerability Management

    Manage all the findings categorized by its severity and focus on what really matters. Findings will automatically be mark as resolved once they are fixed.

  • Quick Audit Reports

    Export audit reports automatically in PDF or HTML for easy security compliance in the click of a button.

pdf2
pdf1

Dynamic Scan

DAST

Dynamic Application Security Testing

We have two kinds of Dynamic scanning for finding all the vulnerabilities and security threats.

PASSIVE DAST

We will
scan:

Certificates

  • Expiration
  • SSL issues

Domains

  • Zone transfer
  • Take over
  • Expiration
  • Email (SPF, DMARC & DKIM)

ACTIVE DAST

We will
scan:

Ports

Websites

Crawling

Static Scan

SAST

Static Application Security Testing

Dependency vulnerabilities

  • PHP: Composer
  • JavaScript: Yarn
  • Go: Modules

  • Hardcoded
  • Commit history
  • And more...

Easy & modern

UI Features

You will love it!

Report generation in PDF

Google SSO Integration

Modern UI Design

Infrastucture visualization

Won't have to do anything

Automation Features

Let us work for you

Continuous Discovery & Audit

Fully automated

Slack notifications

Findings marked as resolved when fixed

Keep In Touch

Twitter Facebook-f Youtube Medium Linkedin-in Github

MenĂº

  • How it works
  • FAQ
  • Pricing
  • Get a demo

Legal

  • Terms of user
  • Privacy policy
  • Cookies policy

Contact us

Copyright 2021 SynScan – All rights reserved

See us in action

Request a demo

We will prepare your own instance of the platform as a trial, and provide a quick scan report directly to your email

contact us

We'll contact you
ASAP