In web application security, a URL scanner is a tool that examines a website or URL to determine whether it contains any malicious code. There are many different URL scanners on the market, ranging from free software to enterprise-level tools. These scanners typically check for malware, phishing, viruses, parked domains, and other malicious activity. Some of these scanners even provide real-time risk scores for suspicious URLs.
The ZAP API scan URL scanner API is a script available in the zp-api-scan Docker image that performs a ZAP Active Scan against a set of URLs. It is tuned for performing scans against APIs defined by OpenAPI, SOAP, or GraphQL via either a local file or a URL. The results of the scan are displayed in the Reports tab and sorted by URL.
A free URL scanner from Sucuri that uses over 60 blacklist registry services to detect and block dangerous links, websites, and malicious content. It can also detect phishing links and identify if a website has been compromised by analyzing source and configuration files. It also has a reputation API that can provide an overall site reputation score.
This free, cloud-based, and cross-platform URL scanner is used by organizations of all sizes to verify the integrity of web pages. It can be used to identify unauthorized changes and to detect hidden text, obfuscated scripts, XSS attacks, and other vulnerabilities. This service is particularly useful for developers as it allows them to test their code for a variety of risks.
The Lookup API is a low-latency, high-volume, server-initiated API that provides an up-to-date list of Safe Browsing verdicts for a given URL. It uses encrypted updates, so the server never knows the actual URL that was queried. This API is used by several web browsers and other applications to provide fast, accurate, and scalable protection against unsafe URLs.
This is a free and lightweight tool for scanning website URLs and IP addresses for known malware, phishing, spam, and other malicious activities. It supports a wide range of protocols and identifies malware by looking at the file hashes, IPs, Autonomous System Numbers (AS numbers), and other attributes. It is also able to detect obfuscated scripts, hidden HTML elements, and other security threats.
With the submission and retrieval API, users can submit URLs to be scanned, search existing scans by their characteristics, and retrieve the scan results. The API can also be used to query and update data from the database that powers these scans.
A free, cloud-based and cross-platform URL scanner that checks for a wide variety of security risks, including XSS and SQL injections. It can also detect other common flaws, such as insufficient input sanitization, session management, and cookie handling. It can also identify web servers with poorly configured SSL.
This free tool is a powerful and robust security scanner that can find multiple types of web-based vulnerabilities, such as HTML5 security errors and insufficient form validation. It has the ability to run on multiple machines simultaneously, and can generate reports that can be saved to a database. The results can then be analyzed and used to improve the overall security of a website.