OWASP API TOP 10 · CLOUDFLARE · REST · GRAPHQL
v1.2.0
PASSIVE + CF MODE
CLOUDFLARE WORKERS BACKEND
jbot9000.com
SCANNER ONLINE
CF WORKER READY
OWASP · CF · JWT · SSRF · OAUTH · OIDC
PASSIVE
CLOUDFLARE CHECKS CF
CRITICAL
HIGH
MEDIUM
LOW
PASS
INITIALIZING SCAN ENGINE... 0%
┌──────────────────────────────────┐ │ API VULNERABILITY SCANNER │ │ │ │ ▸ OWASP API TOP 10 │ │ ▸ CLOUDFLARE SURFACES │ │ ▸ JWT ANALYSIS │ │ ▸ SSRF DETECTION │ │ ▸ HTTP METHOD ENUMERATION │ │ ▸ GRAPHQL INTROSPECTION │ │ ▸ REDIRECT CHAIN ANALYSIS │ │ ▸ TIMING ORACLE DETECTION │ │ ▸ CONTENT NEGOTIATION ABUSE │ │ ▸ HTTP/2 RAPID RESET CHECK │ │ ▸ SUPPLY CHAIN FINGERPRINT │ │ ▸ SECRET LEAKAGE DETECTION │ │ ▸ DESERIALIZATION DETECTION │ │ ▸ DNS REBINDING DEFENSE │ │ ▸ CONTENT-TYPE ENFORCEMENT │ │ ▸ URL DATA LEAKAGE │ │ ▸ MASS ASSIGNMENT DETECTION │ │ ▸ SUBRESOURCE INTEGRITY (SRI) │ └──────────────────────────────────┘
ENTER TARGET URL TO BEGIN SCAN