Cerberus
beta
Select vulnerabilities to scan:
SQL Injection (SQLi) - Always enabled
Directory Traversal
Local File Inclusion (LFI)
Remote File Inclusion (RFI)
Server-Side Request Forgery (SSRF)
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Open Redirects
Command Injection
Insecure HTTP Headers
Missing Security Headers (CSP, HSTS, X-Frame-Options, etc.)
CORS Misconfiguration
Clickjacking
Sensitive Data Exposure
Mixed Content (HTTP inside HTTPS)
SSL/TLS Misconfiguration
Open Ports / Exposed Services
Broken Authentication Indicators
Session Cookie Misconfiguration
Outdated Libraries / Known CVEs
Exposed .git / Backup Files
Information Disclosure (Server Banners, Stack Traces)
API Endpoint Exposure
Subdomain Takeover Risks
Scan