Is this legal? Do I need permission?

AttackVector performs passive security scanning only — we analyze publicly available information like HTTP headers, SSL certificates, and technology fingerprints. We do NOT perform active exploitation. However, you should only scan websites you own or have explicit authorization to test.

How does AttackVector compare to traditional pentesting?

Traditional penetration tests cost $5,000–$50,000+ and take weeks. AttackVector provides instant AI-powered scanning starting at $79/mo. While it doesn't replace a full manual pentest for compliance purposes, it catches 80% of common vulnerabilities at 1% of the cost.

What does the free tier include?

The free scan includes SSL/TLS certificate analysis, HTTP security headers audit, technology stack detection, your top 3 vulnerabilities, and an overall security grade (A-F). Upgrade to Pro to unlock all vulnerabilities, CVE matching, and AI remediation guides.

How do the AI agents work?

AttackVector uses a pipeline of specialized AI agents: Recon Agent discovers endpoints, Fingerprint Agent detects your tech stack, Scanner Agent checks for misconfigurations, CVE Matcher cross-references the NVD database, and Report Writer generates human-readable findings with fix instructions.

How often should I scan my site?

We recommend scanning after every deployment and at least weekly. Pro subscribers get continuous monitoring with weekly automatic re-scans. New CVEs are published daily, so regular scanning is essential.

Can AttackVector scan internal/private networks?

No. For security reasons, AttackVector only scans publicly accessible URLs. We block requests to private IP ranges (localhost, 10.x.x.x, 192.168.x.x, etc.).

What is automated penetration testing?

Automated penetration testing uses AI and software tools to simulate cyberattacks on your systems, identifying vulnerabilities without requiring a human security consultant. AttackVector automates recon, fingerprinting, vulnerability scanning, CVE matching, and report generation — delivering results in seconds instead of weeks.

How much does a penetration test cost?

Traditional manual penetration tests cost between $5,000 and $50,000+ per engagement. AttackVector provides AI-powered pentesting starting with a free tier, with Pro plans at $79/mo and Premium at $199/mo — making enterprise-grade security accessible to startups and small businesses.

What vulnerabilities does AttackVector detect?

AttackVector detects OWASP Top 10 vulnerabilities including SQL injection, cross-site scripting (XSS), CSRF, broken authentication, security misconfigurations, sensitive data exposure, and more. Pro and Premium plans add CVE matching against the National Vulnerability Database, DNS security auditing, API security testing, and frontend pentesting.

Is AI pentesting as good as manual penetration testing?

AI pentesting catches 80% of common vulnerabilities instantly and is ideal for continuous monitoring. Manual pentesting is still recommended for compliance audits (PCI DSS, SOC 2) and testing complex business logic. AttackVector is best used as a complement — providing continuous coverage between annual manual pentests.

What is a CVE and how does CVE scanning work?

CVE (Common Vulnerabilities and Exposures) is a standardized system for identifying known security vulnerabilities. AttackVector detects your technology stack (frameworks, libraries, servers) and cross-references them against the National Vulnerability Database (NVD) with 50,000+ CVE entries to find known exploits affecting your software versions.

How do I check if my website is secure?

Enter your website URL at attackvector.tech/scan to get a free instant security assessment. You'll receive a security grade (A-F), SSL/TLS analysis, HTTP security headers audit, technology detection, and your top vulnerabilities — all in seconds with no signup required.

What is OWASP Top 10 and why does it matter?

The OWASP Top 10 is the industry standard list of the most critical web application security risks, published by the Open Worldwide Application Security Project. It includes injection attacks, broken authentication, sensitive data exposure, XML external entities, broken access control, security misconfigurations, XSS, insecure deserialization, using components with known vulnerabilities, and insufficient logging. AttackVector scans for all 10 categories.

Does AttackVector test APIs for vulnerabilities?

Yes. Pro and Premium plans include API discovery and API security testing. AttackVector automatically discovers API endpoints, then tests for SQL injection, command injection, authentication bypass, IDOR, rate limiting issues, CORS misconfigurations, and mass assignment vulnerabilities in your APIs.

What is a DNS security audit?

A DNS security audit examines your domain's DNS configuration for security issues including missing SPF, DKIM, and DMARC records (email spoofing protection), DNSSEC validation, zone transfer vulnerabilities, dangling DNS records, and subdomain takeover risks. AttackVector includes comprehensive DNS auditing in Pro and Premium plans.

How does AI-powered vulnerability scanning work?

AttackVector deploys multiple specialized AI agents in parallel: a Recon Agent maps your attack surface, a Fingerprint Agent identifies your technology stack, a Scanner Agent tests for misconfigurations and vulnerabilities, a CVE Matcher finds known exploits in your software, and a Report Agent generates human-readable findings with step-by-step remediation guides.

Security Assessment Pipeline

How AttackVector Works

A multi-stage, non-destructive security assessment that identifies vulnerabilities, models attack paths, and maps compliance gaps — all without exploitation.

Free Tier

Passive reconnaissance and basic security checks

Stage 1: Reconnaissance

Endpoint discovery, link crawling, robots.txt analysis, and sitemap extraction.

Stage 2: Fingerprinting

Technology stack detection including web server, framework, and JavaScript library identification with version extraction.

Basic Vulnerability Scan

SSL/TLS certificate validation, HTTP security headers audit, CVE matching, and AI-generated security grade (A-F). Top 3 vulnerabilities shown.

Pro Tier$79/mo

Active scanning with Stage 3 exploit validation

Everything in Free, plus verified scope active scanning and 8 detect-only exploit validation modules:

SQL Injection Detection

Boolean/time-based detection only — no data extraction

Reflected XSS Detection

Harmless marker reflection check in response and DOM

Auth Misconfiguration

Checks for unprotected sensitive endpoints

IDOR Detection

Minimal ID variation with structure comparison

CVE Fingerprint Confirmation

Version-to-CVE correlation from local database

Object Storage Exposure

Permission probes on cloud storage buckets

Admin Panel Detection

Signature-based discovery of admin interfaces

TLS Misconfiguration

Handshake analysis for weak ciphers and protocols

Technical PDF ExportShare ReportsPrivate Scans

Premium Tier$199/mo

Full Stage 4 attack path modeling and compliance mapping

Attack Path Modeling

In-memory attack graph construction with BFS/DFS path ranking. Identifies the top attack chains from internet attacker to high-impact assets with step-by-step remediation priorities.

Compliance Mapping

Maps every finding to NIS2 (gap indicator only), ISO 27001 Annex A, SOC 2 Common Criteria, and NIST CSF with 1-2 line rationale per mapping.

Executive Reporting

AI-generated business risk summary with top risks, likely entry points, worst-case outcomes, and quick wins. Executive PDF export for leadership.

Remediation Roadmap

Prioritized remediation plan based on attack path analysis, severity, and business criticality. Template-based, deterministic output.

Technical PDF ExportExecutive PDF ExportShare ReportsPrivate ScansRun Agents on Your Infrastructure

What We Do and What We Do Not Do

What We Do

✓Non-destructive vulnerability detection
✓Passive reconnaissance and fingerprinting
✓Detect-only exploit validation (no data extraction)
✓Attack path modeling based on observed findings
✓Compliance gap indicators (NIS2, ISO 27001, SOC 2, NIST)
✓Structured, reproducible JSON outputs
✓Full audit trail of all scan operations

What We Do NOT Do

✗No remote code execution or shell access
✗No data extraction, dumping, or exfiltration
✗No privilege escalation attempts
✗No brute force or credential stuffing
✗No denial of service (DoS) attacks
✗No scanning outside verified scope
✗No compliance certification (gap indicators only)

Authorization Required: You must have explicit authorization to scan any target. AttackVector enforces strict scope verification. Scanning without authorization may violate applicable laws.

Asset Ownership Verification

Before any active scanning begins, you must prove ownership of the target asset. This is a mandatory step — AttackVector will never scan assets without verified authorization.

DNS TXT Challenge

Domains

Add a TXT record to your domain's DNS to prove ownership.

DNS TXT Record

_attackvector.yourdomain.com TXT "av-verify=<token>"

Reverse HTTP Challenge

IP Addresses

Host a verification file on the target server so we can confirm you control it.

Host this file

http://<IP>/.well-known/attackvector.txt

Signed Outbound Callback

IP Addresses

Run a signed curl command from the target server to confirm you have shell access to it.

Run on target

curl https://attackvector.tech/verify/<token>

RECOMMENDED

Lightweight Agent

IP Addresses

Deploy a minimal agent on the target that handles verification and provides a secure communication channel for deeper assessments.

One-line install

curl -sSL https://attackvector.tech/agent | sh -s <token>

Ready to Assess Your Security?

Start with a free scan or upgrade to Pro for full exploit validation.

Scan My Site Free See Pricing