Score & Data
Return the last websurface score analysis of the domain
GET {{baseURL}}/scores/websurface/:domainName
Path Parameters
Name
Type
Description
domainName*
String
The domain name to consult. Without http ou https.
{
"data": [
{
"processing_date": "2024-02-01T00:11:26.801Z",
"domain": "vulneri.io",
"method_version": "0.0.1",
"parameters": {
"sensible_files": {
"total": 947,
"percentage": 0.2069040856456194,
"weight": 0.1,
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
],
"score": "B"
},
"subdomains_problems": {
"total": 41,
"percentage": 0.3867924528301887,
"weight": 0.1,
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
],
"score": "C"
},
"waf": {
"total": 25,
"percentage": 0.7641509433962265,
"weight": 0.1,
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
],
"score": "E"
},
"ip_ports": {
"total": 3,
"percentage": 0.2727272727272727,
"weight": 0.1,
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
],
"score": "B"
},
"heartbleed": {
"total": 0,
"percentage": 0,
"weight": 0.1,
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
],
"score": "A"
},
"ssl_problems": {
"total": 8,
"percentage": 0.07547169811320754,
"weight": 0.1,
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
],
"score": "A"
}
},
"final_rating": [
{
"rating_type": "average",
"percentage": 0.2843410754520858,
"rating": "B",
"ref_table": [
{
"from": 0,
"to": 0.1,
"rating": "A"
},
{
"from": 0.1000000000000001,
"to": 0.3,
"rating": "B"
},
{
"from": 0.3000000000000001,
"to": 0.5,
"rating": "C"
},
{
"from": 0.5000000000000001,
"to": 0.7,
"rating": "D"
},
{
"from": 0.7000000000000001,
"to": 1,
"rating": "E"
}
]
}
]
}
]
}Return all subdomains discovered
GET {{baseURL}}/scores/websurface/:domainName/subdomains
Path Parameters
Name
Type
Description
domainName*
String
The domain name to consult. Without http ou https.
{
"data": [
{
"processing_date": "2024-02-05T20:54:30.577Z",
"domain": "vulneri2.io",
"method_version": "0.0.1",
"subdomains": [
"adm.vulneri2.io",
"www.totem.vulneri2.io"
]
}
]
}Return all SSL analysis discovered
GET {{baseURL}}/scores/websurface/:domainName/subdomain_ssl
Path Parameters
Name
Type
Description
domainName*
String
The domain name to consult. Without http ou https.
{
"data": [
{
"processing_date": "2024-02-05T20:54:30.577Z",
"domain": "vulneri2.io",
"method_version": "0.0.1",
"subdomains": [
{
"subdomain": "adm.vulneri2.io",
"tls_fallback_scsv": true,
"tls_renegotiation": true,
"ssl_problems": false,
"heartbleed_problems": false
}
]
}
]
}Return all IPs & Ports discovered
GET {{baseURL}}/scores/websurface/:domainName/ports
Path Parameters
Name
Type
Description
domainName*
String
The domain name to consult. Without http ou https.
{
"data": [
{
"processing_date": "2024-02-05T20:54:30.577Z",
"domain": "vulneri2.io",
"method_version": "0.0.1",
"ports": [
{
"ip": "10.10.10.10",
"ports": 443,
"severity": "Low"
}
]
}
]
}Retrun all files considered sensibles
GET {{baseURL}}/scores/websurface/:domainName/sensible_files
Path Parameters
Name
Type
Description
domainName*
String
The domain name to consult. Without http ou https.
{
"data": [
{
"processing_date": "2024-02-05T20:54:30.577Z",
"domain": "vulneri2.io",
"method_version": "0.0.1",
"files": [
"https://vulneri2.io/assets/libs/bootstrap/dist/js/bootstrap.bundle.min.js",
"https://vulneri2.io/assets/libs/jquery/dist/jquery.min.js",
"https://vulneri2.io/js/index.js",
"https://vulneri2.io/assets%5Cjs%5Cabout.js",
]
}
]
}Return all scanned endpoints & scan method
GET {{baseURL}}/scores/websurface/:domainName/scan
Path Parameters
Name
Type
Description
domainName*
String
The domain name to consult. Without http ou https.
{
"data": [
{
"processing_date": "2024-02-05T20:54:30.577Z",
"domain": "vulneri2.io",
"method_version": "0.0.1",
"scans": [
{
"category": "behat-config",
"analysis_type": "http",
"severity": "medium",
"url": "https://ead.vulneri2.io/behat.yml.dist",
"additional_info": []
},
{
"category": "mismatched-ssl-certificate",
"analysis_type": "ssl",
"severity": "low",
"url": "vulneri2.io:443",
"additional_info": [
"\"CN: TRAEFIK DEFAULT CERT\""
]
}
]
}
]
}Last updated