Community

Blog

User Documentation - Nova Security Support

API Reference

Dashboard

Support

In this article, we will go over you can easily start a recon scan on a single or multiple domains or even a target definition to map out as many hosts & live hosts as possible.

Launching a Recon Scan

Hey there! Thank you for putting your trust into Nova Security! Our main goal is to help you **find as much vulnerabilities as possible in your web assets** and **help you fix them before they get exploited by bad actors!**

Introduction

There are several reasons of why it'd be a more wise decision to choose us above any other alternative. This page outlines all of the reasons why.

Why Nova Security Scanner

Common terminologies used on Nova Security Scanner and their definitions.

Glossary

In this article, we will go over you can easily start a deep scan on a single or multiple URLs or even a target definition to uncover vulnerabilities.

Launching a Deep Scan

Out-of-band &#x28;OOB&#x29; Server is your personal private OOB server to receive invocations on for Out-of-band Application Security Testing &#x28;OAST&#x29;

OOB Server

Callback Server is your personal private Callback Server to help you scan for Blind Cross-Site Scripting &#x28;XSS&#x29; vulnerabilities.

OOB Callback Server

WAYPOINTS is a scalable solution to define your own personalized scan rules to look for security vulnerabilities on your organisation's or company's network.

WAYPOINTS Template-based Scanner

**Templates** or **Scan Rules** are predefined JSON objects to instruct WAYPOINTS to look for security vulnerabilities across your organisation's or company's network. In this guide we will go over what templates (or scan rules) are.

What is a WAYPOINTS template or scan rule?

**Templates** or **Scan Rules** are predefined JSON objects to instruct WAYPOINTS to look for security vulnerabilities across your organisation's or company's network. In this guide I will go over how you can create your private template.

Creating a WAYPOINTS template

Nova Security provides an extensive API to start, delete, and view scans at any time.

Authentication

API Status

Retrieve your account statistics by resource

Clear Notifications

Retrieve a list of all the hosts found on all target

Retrieve a list of all live hosts found on all target

Retrieve a list of all the latest reported hosts

Retrieve a list of all the latest reported live hosts

Retrieve all live hosts of a specific target

Create Target Definiton

Delete Target Definitions

Launch a Quick Scan

Initiate a new host discovery scan on your specific target

Launch a Deep Scan

Delete Deep Scans

Start SUBDOMAINX Scan

Start CNAME X Scan

Initiate a Cross-Origin Resource Sharing misconfiguration scan

Start SPIDER X Scan

Start an Open URL Redirect (CWE-601) Scan

Start REDIRECT X Scan

Start a Cross-Site Scripting (CWE-79) Scan

Start XSSCANNER Scan

Schedule a host discovery scan to run periodically

Retrieve the next current time your scan will be scheduled

Retrieve results of all host discovery scans performed on a specific target

Retrieve results of a specific host discovery scan performed on a specific target

Delete Target Scans

Retrieve all host discovery results for all your targets

Retrieve the current scan status by scanId

Retrieve all scan results for a specific scanner

Delete Scan Results

Delete Multiple Scans

Retrieve a list of vulnerabilities found on your target

Getting Started

Recon Scans & Deep Scans

OOB Server

WAYPOINTS

Launching a Recon Scan

What are Recon Scans?

Starting a Recon Scan on a single URL

What happens after I start a Recon Scan?

Advanced: Finding more Subdomains

Getting Started

Recon Scans & Deep Scans

OOB Server

WAYPOINTS

​What are Recon Scans?

​Starting a Recon Scan on a single URL

​What happens after I start a Recon Scan?

​Advanced: Finding more Subdomains

What are Recon Scans?

Starting a Recon Scan on a single URL

What happens after I start a Recon Scan?

Advanced: Finding more Subdomains