This store requires javascript to be enabled for some features to work correctly.

Multi-platform deployment Docker package supporting: Mac OSX, Linux, MS Windows
Straightforward integration Scripting, Command-line utilities, REST API
User-friendly Web UI with clever filtering and incredible context.
Multi-platform deployment Docker package supporting: Mac OSX, Linux, MS Windows
Straightforward integration Scripting, Command-line utilities, REST API
User-friendly Web UI with clever filtering and incredible context.
Unrestricted Unlimited scans (+parallel), sites, pages and scan duration.
Affordable Best prices on the market.
Simple licensing Cloud, container and off-line use friendly.
Unrestricted Unlimited scans (+parallel), sites, pages and scan duration.
Affordable Best prices on the market.
Simple licensing Cloud, container and off-line use friendly.
Unparalleled coverage For legacy, Javascript-heavy and Single-Page-Applications.
Zero false-positive tolerance Never worry about false-positives again.
Super-fast Incremental scans reduce scan times from hours to minutes. Intelligent self-optimizing strategies, automagically tailored to each WebApp's chartacteristics, allow for lighting fast seed (first) scans.
Unparalleled coverage For legacy, Javascript-heavy and Single-Page-Applications.
Zero false-positive tolerance Never worry about false-positives again.
Super-fast Incremental scans reduce scan times from hours to minutes. Intelligent self-optimizing strategies, automagically tailored to each WebApp's chartacteristics, allow for lighting fast seed (first) scans.
Scalable Load-balance. Scale up or down, vertically or horizontally. Spread scans across machines and even combine resources from multiple machines.
Reporting With detailed reports in Plaintext, PDF, HTML, JSON and XML you can move further forward quicker to integrate and mitigate.
Intelligent Individual analysis of each resource, tailoring each request to the technologies being used, as well as the behavioral characteristics of each individual input vector.
Scalable Load-balance. Scale up or down, vertically or horizontally. Spread scans across machines and even combine resources from multiple machines.
Reporting With detailed reports in Plaintext, PDF, HTML, JSON and XML you can move further forward quicker to integrate and mitigate.
Intelligent Individual analysis of each resource, tailoring each request to the technologies being used, as well as the behavioral characteristics of each individual input vector.

News

Multi-platform Docker images for the Ecsypno product line

Multi-platform Docker images for the Ecsypno product line

Hello all,   I wanted to take a moment to inform you of the new official release format. From now...

Incremental scans for Codename SCNR v1.5 and Codename RKN 1.4

Hello all, Codename SCNR v1.5 and Codename RKN 1.4 have just been released, both now with support for incremental scans....

Codename RKN: The WebApp attack surface mapper.

Codename RKN: The WebApp attack surface mapper.

Hello all, I would like to introduce to you the new addition to Ecsypno's product line: Codename RKN Codename RKN...

Multi-platform Docker images for the Ecsypno product line

Multi-platform Docker images for the Ecsypno product line

Hello all,   I wanted to take a moment to inform you of the new official release format. From now...

Incremental scans for Codename SCNR v1.5 and Codename RKN 1.4

Hello all, Codename SCNR v1.5 and Codename RKN 1.4 have just been released, both now with support for incremental scans....

Codename RKN: The WebApp attack surface mapper.

Codename RKN: The WebApp attack surface mapper.

Hello all, I would like to introduce to you the new addition to Ecsypno's product line: Codename RKN Codename RKN...

Articles

Script your DOM XSS exploitation workflow

Hello all, I wanted to share some Codename SCNR scripting kung-fu with you. This is something you can use post-scan,...

The Arachni Chronicles

The Arachni Chronicles

A story of curiosity, experimentation, development, million euro deal, fraudsters, abandonment and revitalization. From the inception of the F/OSS Arachni...

Continuous client-side IAST/DAST Hybrid approach for Single-Page-Applications

Continuous client-side IAST/DAST Hybrid approach for Single-Page-Applications

Some very interesting technology was presented a few days ago in the following articles: Following the data: Taint-tracing in the...

Script your DOM XSS exploitation workflow

Hello all, I wanted to share some Codename SCNR scripting kung-fu with you. This is something you can use post-scan,...

The Arachni Chronicles

The Arachni Chronicles

A story of curiosity, experimentation, development, million euro deal, fraudsters, abandonment and revitalization.

From the inception of the F/OSS Arachni WebAppSec scanner to the opening of Ecsypno’s doors with its flagship product Codename SCNR.

Continuous client-side IAST/DAST Hybrid approach for Single-Page-Applications

Continuous client-side IAST/DAST Hybrid approach for Single-Page-Applications

Some very interesting technology was presented a few days ago in the following articles: Following the data: Taint-tracing in the...