Vulnerability scanning tools
that map your attack surface
Vulnerability scanner with 16 automated modules for SSL, ports, headers, subdomains, cloud exposure, and CVE correlation. Get instant results from fast checks, then deep analysis from background workers — vulnerability detection tools built into your workflow.
No credit card required. Free plan available forever.
16 scanner modules map your external attack surface automatically
External vulnerability scanning is the first step in understanding your security posture. SecPortal runs 16 purpose-built scanner modules against your verified domains, testing everything from SSL certificate configuration to exposed cloud storage buckets. Each module is designed by security engineers to replicate what a real attacker would check first when targeting your organisation.
Unlike traditional scanners that require lengthy configuration and deliver a single monolithic report hours later, SecPortal uses a two-phase architecture. Fast modules return results within seconds while heavier analysis runs in the background. You get actionable intelligence immediately and deep analysis shortly after — all from your browser with zero setup beyond domain verification.
All 16 scanner modules
SSL/TLS Analysis
Certificate validity, protocol versions, cipher suites, and known vulnerabilities like Heartbleed
Security Headers
CSP, HSTS, X-Frame-Options, X-Content-Type-Options, Permissions-Policy, and more
DNS Records
A, AAAA, MX, TXT, CNAME, NS records with SPF, DKIM, and DMARC validation
Redirect Analysis
HTTP-to-HTTPS enforcement, redirect chains, and open redirect detection
WAF Detection
Identify web application firewalls including Cloudflare, AWS WAF, Akamai, and Imperva
WHOIS Lookup
Domain registration details, registrar, expiry dates, and privacy protection status
Port Scanning
Top 1000 TCP ports with service identification and version fingerprinting
Tech Fingerprint
Detect web servers, frameworks, CMS platforms, JavaScript libraries, and CDN providers
Exposed Paths
Discover admin panels, backup files, configuration files, and sensitive endpoints
Subdomain Enumeration
DNS brute-force and certificate transparency log analysis to map subdomains
Subdomain Takeover
Detect dangling DNS records pointing to unclaimed cloud resources
Cloud Exposure
Find publicly accessible S3 buckets, Azure Blob containers, and GCP storage
Vuln Correlator
Match detected technologies against the NVD CVE database for known vulnerabilities
Info Disclosure
Server version leaks, debug pages, stack traces, and sensitive error messages
Open Redirect
Test for URL-based redirect vulnerabilities exploitable in phishing attacks
Rate Limiting
Check for missing or weak rate limiting on login, API, and form submission endpoints
Two-phase scanning architecture
SecPortal splits scanning into two phases so you never wait for results. Phase 1 modules execute instantly in the API layer. Phase 2 modules run on a dedicated Docker-based worker for operations that require more time or external tooling. Results stream back in real time as each module completes.
- Phase 1 (instant): Fast modules like SSL, headers, DNS, and WHOIS run in-browser and return results in seconds
- Phase 2 (background): Heavy modules like port scanning, subdomain enumeration, and CVE correlation run asynchronously via the scan worker
- Real-time progress updates as each module completes via Supabase Realtime
- Consolidated security score from 0 to 100 based on weighted module results
- Findings are automatically created from scanner output with severity and remediation guidance
- Domain verification required before scanning to prevent abuse — DNS TXT or meta tag methods supported
Security scoring system
Every scan produces a consolidated security score from 0 to 100, calculated by weighting the results of each module based on its impact on overall security posture. SSL misconfigurations, missing security headers, and exposed services each carry different weights. The score gives you an at-a-glance view of your external security health and lets you track improvements over time as you remediate findings. Scores are stored historically, making it easy to demonstrate progress to clients and stakeholders.
Related use cases
Start scanning in minutes
Verify your domain and run your first external scan — free on the Starter plan.
No credit card required. Free plan available forever.