// tool reference · Vulnerability & Assessment
AI Vulnerability Scanner Free + Pro
Passively scan any site you own for misconfigurations, with AI countermeasures.
Open AI Vulnerability Scanner →
What it does
Scans a web target you control for missing headers, cookie flags, TLS configuration, exposed paths and version disclosure. It is deliberately conservative: bounded request count, no exploitation, and an authorisation gate you must tick.
When to use it
- Before shipping a site, as a final external check.
- After a config change, to confirm you did not regress a header.
Inputs
Field names are the actual form parameters, verified against source.
| Field | Type | Required | Notes |
|---|---|---|---|
| target | url | required | Full URL including scheme. Must be publicly resolvable. |
| authorized | checkbox | required | You confirm you own the target or have written permission. |
| use_ai | checkbox | optional | Add AI prioritisation over the deterministic findings. |
What you get back
Findings with severity and the exact configuration change to make.
How it works
Deterministic probing within a hard request budget. Every request is SSRF-guarded: the hostname is resolved, checked against internal/reserved ranges, and the connection is PINNED to the validated public IP, so DNS cannot be rebound between check and fetch. Redirects are never auto-followed.
Limits
Read live from the platform configuration.
| Free | — scan |
| Pro | — scans |
| Requests/scan | — |
| Timeout | —s |
| Response cap | — bytes |
| Top-ups | Vuln Scan Pack |
Privacy
The target URL and findings are retained against your account for your scan history.
Standards
OWASP Top 10OWASP Secure HeadersCWE