SaaS Penetration Testing — User Guide¶
Welcome to the SaaS Application Penetration Testing Platform. This guide covers everything you need to get started — from creating your account to running your first security scan and interpreting the results.
What Is This Platform?¶
This platform lets you run automated penetration tests against your web applications. It discovers pages and endpoints, then runs nine specialised security modules covering:
- SQL Injection, XSS, JWT manipulation
- Authentication & access control weaknesses
- Security header misconfiguration
- Data manipulation (NoSQL injection, file uploads, path traversal)
- SSRF & command injection
- API fuzzing and external tool integration
Results are scored on a 0–100 scale, with every finding ranked by severity so you know exactly what to fix first.
Quick Start¶
- Create your account and verify your email.
- Add a domain and complete DNS verification.
- Run your first scan.
- Review the findings and start remediating.
Platform Navigation¶
Once logged in you will see a sidebar with the following sections:
| Section | Description |
|---|---|
| Dashboard | Overview of your security posture with key metrics |
| Domains | Add, verify, and manage the domains you want to scan |
| Scans | Launch scans and view results |
| Scan Guide | Reference for every scan module |
| Shared Results | Share scan results with other users |
| Badges | Create embeddable security badges for your sites |
| Contact Us | Send a message to the platform team |
| Settings | Profile, password, and notification preferences |
The top bar shows notification alerts and your account information.
Need Help?¶
Use the Contact Us page to send a message to the platform administrators.