Top 13 Online Vulnerability Scanning Tools

You run the risk of being hacked anytime you post your web applications with the public. That’s why it’s an utter necessity to set up a strong vulnerability search over your network, servers and web applications.

Fortunately, you may define, categorize, patch and track any potential vulnerability holes using a variety of proven methods. And just as we shared a rundown of the best available OSINT software with you, today we’re going to review the top 13 online vulnerability scanning tools that help you take care of things before the bad guys do.

Mozilla Observatory

One of the most powerful online vulnerability scanners around is the Mozilla HTTP Observatory. This security scanner, founded by the Mozilla Foundation, would evaluate your website using numerous methods to find possible flaws and security gaps within your web application and servers.

There are four types of tests: HTTP Observatory, TLS Observatory, SSH Observatory and Third-party Tests.

TLS Observatory and Third-party tests (from sites like ssllabs.com, htbridge.com, tls.imirhil.fr,

securityheaders.com, and hstspreload.org) focus on SSL security and HTTP headers, and show really interesting results such as vulnerable cipher suites, for example:

Finally, there is also an SSH service scanner that needs to be initiated manually. Most of the time it will require you to whitelist the Observatory IP address to generate an accurate scan by avoiding firewall blocks.

Once you’ve identified your SSH weaknesses, you can start hardening your server to mitigate the most common SSH attacks.

Detectify

Detectify is a well-known web vulnerability detector that helps company owners, teams of infosec, and developers to instantly search for over 1000 known vulnerabilities.

Any aggressive threats can be constantly analysed by its built-in subdomain monitoring feature. It even reviews the top OWASP vulnerability tests on your site, helps you to combine protection scans with common dev tools such as Slack, Zapier and Jira, and exports the reports of all vulnerabilities uncovered as a list or a complete article.

It begins by capturing server information while pressing the first scan, then crawling, fingerprinting, and for subsequent information analysis, finishes with manipulation checks and produces the results of the scan.

The findings will be displayed in your user dashboard when done, showing you the seriousness of the vulnerabilities found in your applications, as shown below:

You’ll see a complete list of security warnings and critical errors found on your website, from mixed HTTP/HTTPS content, to HTTP header vulnerable configurations, old SSL/TLS protocols, and much more.

Last but not least, Detectify will analyze your website against the famous OWASP Top 10 vulnerabilities list and give you a final score, along with quick links that offer more information about how to fix each security-threatening issue:

Pentest Web Server Vulnerability Scanner

Another excellent product produced by PenTest-Tools, a company known for its broad variety of infosec tools that can search the website against any form of vulnerability, is the Pentest Web Server Vulnerability Scanner.

Here, with the 20 free credits they sell to guest users, we checked the online web server vulnerability detector.

The findings show a risk ranking overview, possible vulnerable files uncovered, flaws in remote command execution, SQL injection figures, arbitrary file reads, redundant server applications, misconfigured server services, discovered server software and technology, as well as a robots.txt file and a complete HTTP protection header check.

This tool is particularly useful when you need to perform a few specific tests; in our case the 20 free credits were enough to run two scans from the same IP before suggesting their Pro plan for a full deep scan.

Qualys FreeScan

While Qualys is renowned for its SSL test, most people do not realize that they still provide a total vulnerability scanner that openly analyzes the websites. You can do 10 free scans of any URLs or IP addresses via this service. For the following questions, the Qualys free scanner analyzes:

  • Web Framework Auditing for OWASP
  • Vulnerabilities connected to the network
  • Missing fixes for applications
  • Conformance with SCAP
  • Malware secret
  • Vulnerabilities of the SSL credential

You’ll see something like this until the results are complete:

The results will be filtered by security impact level, from high severity to low severity vulnerabilities. As shown below at right, you can also see the associated CVE information for each specific vulnerability found.

Placing high on our list, it’s one of the best vulnerability scanners around; however, the manual approval process doesn’t make it the right choice for those in a hurry.

Probe.ly

This may not be a well-known, but extremely competent, web vulnerability scanner. In order to detect security bugs and vulnerabilities, Probe.ly will search the web applications and provide you with feedback about how to repair them.

It is possible to use Probe.ly to run OWASP Top 10 scans, as well as to verify conformity with PCI-DSS, ISO27001, HIPAA and GDPR.

It provides a user-friendly gui that allows you to search the website in seconds. Once done, it sends you results by email and shows the full information in your client area interface, enabling you to import the scan results for further review in PDF and CSV format.

 

ImmuniWeb

ImmuniWeb Security Test is a solid, reliable product that performs security and privacy checks for web applications, including publicly recognized vulnerabilities, remote server running outdated software, HTTP methods, HTTP headers (HSTS, X-Frame-Options, X-Powered-By, X-Content-Type-Options, X-XSS-Protection, CSP, Public-Key-Pins, and more), blacklist checking, remote WAF detection, and crypto detection.

The scan reports results within seconds with a friendly web-based gui and gives you a final security ranking, letting you know about all vulnerabilities detected and whether you count as complying with PCI DSS.

The final report includes other interesting details such as port/protocol detection, SSL certificate information and full cookie security analysis.

Upguard

Upguard is a cybersecurity organization in Australia that offers many tools to help online startups keep their networks secured and avoid web abuses.

One of the fastest we’ve seen so far is their weakness detector. It is also entirely free, a budget-friendly way to check your website against more than 40 security vulnerabilities and popular CVEs of high severity.

Your website, web applications and network, including but not limited to middle-man attacks, cross-site attacks, malicious email attacks, domain hijacking attacks, malware infections, open ports and unauthenticated DNS data, will be automatically checked by the platform.

The scanner will show you a summary of the company behind the domain name (in our tests, cloudflare.com), its cybersecurity rating, as well as a complete description of each vulnerability found on your domain name and web apps once completed.

Web Cookies Scanner

Web Cookies Scanner is an all-in-one website scanning vulnerability tool that bases its tests on the analysis of HTTP cookies, related technologies (Flash, HTML5 localStorage, sessionStorage, CANVAS, Supercookies, Evercookies) and HTTP sessions, as well as scanning features for HTML, SSL/TLS vulnerabilities.

Three different kinds of cookies are analyzed by the scan, such as third-party domain cookies, persistent cookies, and session cookies.

The HTTP header scan shows how secure your website is when it comes to HTTP header hardening and security, as you see in the following example (from our scan of mozilla.org):

Tinfoil Security

Another great vulnerability-finding solution is the Tinfoil Security Scanner. This free scan gives you access to a trial period during which a wide range of security holes, top CVE’s and fingerprints can be scanned against your website for vulnerabilities.

While their scan runs a bit more slowly than the others, it’s deep, thorough and lets you spot the hidden vulnerabilities in your code, server and network.

When finished, it shows you the results as in the following screenshot:

Sucuri

Although Sucuri SiteCheck has become famous as a malware scanner, it also performs a few tasks for scanning vulnerabilities.

The complete report shows you the results of malware scanning, blacklisting checks and the status of firewall websites from third-party services such as Google Safe Browsing, Norton Safe Web, McAfee, PhishTank and Spamhaus.

In order to check for server errors, spamming and any malicious code injected into your HTML, CSS and Javascript files, it will also analyze your website’s code.

It can also reveal critical system information such as IP addresses (ipv4 and ipv6), web server and application server signatures.

Conclusion

It can help you identify and track any security vulnerabilities in your network, servers and web applications by using any of the listed online vulnerability scanning tools. We suggest you run multiple tests with different tools to maximize efficiency and cross-check the outcomes between all of them.

You can add automated scans to ensure you receive your daily or weekly report by email once you have tested and found the best tools for you from this list, allowing you to proactively monitor results. Most of the solutions reviewed here offer both scheduled scans and even API access with your own apps to create built-in solutions.

Our cybersecurity API can be integrated with your own apps in the same way that online vulnerability scanning tools help you detect possible network threats in your web apps and infrastructure to get a deeper insight into what is behind any domain name, DNS server and IP block.

Try SurfaceBrowser or book a demo with our sales team today if you want to move one step forward to discover all the shadow infrastructure of any company or domain name!