What the check library covers
Every scan draws on a library of vulnerability types and detection rules. A check is classified by:
- The severity it's reported at (CRITICAL / HIGH / MEDIUM / LOW)
- Whether it applies to Infrastructure targets, Web Application targets, or both
- Its category (network services, web application, SSL/TLS, authentication, software versions)
Check categories
Network and infrastructure Open ports, service version detection, known vulnerabilities in server software, firewall misconfigurations.
Web application OWASP-class vulnerabilities including SQL injection, XSS, path traversal, authentication issues, insecure HTTP headers, exposed admin interfaces, directory listing.
SSL/TLS Expired certificates, weak cipher suites, protocol downgrade vulnerabilities, misconfigured HTTPS redirects.
Authentication Default credentials, exposed login panels, brute-force susceptibility.
Software versions Outdated and end-of-life software detected via version fingerprinting, matched against CVE databases.
Noise checks
Some checks in the library produce Noise findings — informational detections with no CVE and no direct exploitability. These appear in the Noise tab of Issues and are never counted against your Security Score. They are included in the check library for transparency.