Overview
- Detects vulnerabilities in:
- Crawler-based—crawls public URLs and IPs not behind firewalls
- CSCC standard—custom manual scans
- CSCC premium—managed scans (defaults to weekly)
- Examples:
- XSS
- Flash injection
- Mixed content (HTTP + HTTPS)
- Insecure JavaScript libraries
- Readable passwords