Security Hub

Bring your software development workflows to security

icon-scanner

Security scanners

Signals & Triggers

On request
If user agent or path requested match security scanner signature

Actions

  • block incoming http request Block incoming http request
  • Log the malicious request
  • POST to webhook

Details

Security scanners are tools helping attackers or pentesters to discover potential vulnerabilities in an application. Security scanners range from very basic to advanced tools.

This plugin detects security scanners by looking at the user agents and the requested paths (matching known vulnerabilities, sensitive paths, data exposure, etc). Most of the requests made by a security scanner end up being 404 - not found.

Should the scanner discover a vulnerability, the related plugins will trigger and protect the application.

Advanced details

The plugin will check if the user agent is from a known security scanner. Those could be:

  • tinfoil
  • sqlmap
  • DirBuster
  • Nikto
  • Arachni
  • acunetix
  • and more

Language support

  • Ruby
  • Python
  • Node.js
  • PHP
  • Java

Data collected by Sqreen

Malicious requests


On attack
  • Request payload
  • Attacker IP
  • Attacker account (Sqreen SDK)

Build amazing products. Keep them safe.

Dive into Sqreen with our 14-day trial, and experience seamlessly security. Sign up Request demo