Get Started
Welcome to Detectify. This guide walks you through setting up your account, adding assets, and running your first security scan.
Quick Start Path
- Account setup — Create your account and invite your team
- Add your assets — Add domains, subdomains, or IPs to scan
- Verify ownership — Prove you control the assets you want to scan
- Connect cloud providers — Automatically sync assets from AWS, Azure, GCP, and more
- Run your first scan — Start a security assessment and review findings
What You Can Do with Detectify
Detectify provides four products that work together to secure your applications and infrastructure:
| Product | What it does | Best for |
|---|---|---|
| Attack Surface Management | Discovers and monitors your external attack surface 24/7 | Security teams who need visibility into all internet-facing assets |
| Web Application Security Testing | Crawls and fuzzes web applications for exploitable vulnerabilities | AppSec teams testing custom-built web applications |
| API Security Testing | Tests API endpoints using OpenAPI spec-driven scan profiles | Teams with REST APIs that need automated security testing |
| Internal Scanning | Scans internal applications via a locally deployed agent | Organizations with internal apps behind firewalls |
Prerequisites
To get started with Detectify, you need:
- A valid business email address
- At least one domain or IP address you want to scan
- Permission to scan the target (you must own or have authorization to test the asset)
Resources
- Platform overview — Understand how Detectify works before diving in
- Network setup — Allow Detectify through your WAF and firewall
- Integrations — Connect Detectify to Jira, Slack, CI/CD, and more
Last updated on