Security Scan Types
Choose the right scanner for your security assessment needs
SecureMCP NEW
Specialized scanner for AI/MCP applications. Detects prompt injections, OAuth vulnerabilities, and AI-specific security issues.
Key Features:
- Prompt injection testing
- OAuth token validation
- JWT security analysis
- API rate limiting checks
- Model manipulation tests
- System prompt extraction
Quick Scan 5-10 min
Fast, surface-level security assessment ideal for initial reconnaissance and quick vulnerability checks. Perfect for time-sensitive assessments.
Key Features:
- Security header analysis
- SSL/TLS configuration check
- Basic port scanning
- Common vulnerability patterns
- Exposed sensitive files
Deep Scan RECOMMENDED
Complete vulnerability assessment with AI-enhanced analysis and exhaustive security testing. Combines thorough coverage with advanced exploitation techniques for maximum security validation.
Key Features:
- All Quick scan features
- SQL injection testing (all types)
- XSS vulnerability detection
- Authentication bypass checks
- Business logic flaws
- AI-powered false positive reduction
- Advanced fuzzing techniques
- Exploit chain discovery
- Race condition testing
- Zero-day pattern matching
API Security 15-25 min
Focused REST/GraphQL API security testing. Validates authentication, authorization, input validation, and API-specific vulnerabilities.
Key Features:
- OWASP API Top 10 coverage
- Authentication testing
- Authorization bypass checks
- Rate limiting validation
- Input fuzzing
- GraphQL specific tests
Network Security 20-40 min
Infrastructure and network-level security assessment. Identifies exposed services, misconfigurations, and network vulnerabilities.
Key Features:
- Full port scanning
- Service enumeration
- Version detection
- Default credential checks
- Network segmentation tests
- Firewall rule validation
Ethereum Smart Contract NEW
Specialized scanner for Solidity smart contracts. Detects reentrancy, integer overflow, access control flaws, and EVM-specific vulnerabilities.
Key Features:
- Reentrancy detection
- Integer overflow/underflow
- Access control analysis
- Gas optimization tips
Solana Smart Contract NEW
Advanced scanner for Rust/Anchor programs on Solana. Detects missing signer checks, PDA vulnerabilities, CPI issues, and Solana-specific security flaws.
Key Features:
- Missing signer checks
- Account validation issues
- PDA seed collisions
- CPI vulnerabilities
Scanner Comparison
| Feature | SecureMCP | Quick | Deep Scan | API | Network | Ethereum | Solana |
|---|---|---|---|---|---|---|---|
| Scan Time | 10-20 min | 5-10 min | 15-60 min | 15-25 min | 20-40 min | 2-5 min | 3-6 min |
| AI Analysis | |||||||
| XSS Detection | |||||||
| SQL Injection | |||||||
| Prompt Injection | |||||||
| Best For | AI/LLM apps | Quick checks | Critical apps & thorough testing | REST/GraphQL | Infrastructure | Ethereum/EVM | Solana/Rust |
Choosing the Right Scanner
For AI/LLM Applications
Use SecureMCP Scan to detect prompt injections and AI-specific vulnerabilities.
For Quick Assessment
Use Quick Scan for rapid initial assessment or time-sensitive evaluations.
For Web Applications
Use Deep Scan for general web apps and critical systems. It provides the best overall coverage.
For APIs
Use API Security Scan for REST and GraphQL endpoints with OWASP API Top 10 coverage.
For Infrastructure
Use Network Security Scan to identify exposed services and network vulnerabilities.
For Ethereum/EVM Contracts
Use Ethereum Smart Contract to detect reentrancy, overflow, and EVM-specific vulnerabilities in Solidity code.
For Solana Programs
Use Solana Smart Contract to detect signer checks, PDA issues, and Solana-specific vulnerabilities in Rust/Anchor code.