Is my data or code sent to Flawnter servers or cloud?

No. Flawnter follows zero-trust principles. This means that your data and code remains under your exclusive control and scrutiny. Your files or code is never sent to our servers. It is scanned within your controlled infrastructure and repositories.

What does Flawnter mean?

Flawnter is short for Flaw Hunter. Finding security and quality flaws in applications.

What other features Flawnter has besides SAST?

Besides SAST, Flawnter also supports scanning for DAST, SCA, API Security Testing, Hard-coded Secrets Scanning and more.

Does Flawnter support auto update?

Yes, Flawnter does offer an auto-update feature. For command-line usage, you can enable auto-updates by setting the autoupdate flag to true in the flawnter.cfg file which will run auto update after a scan. You can also pass -autoupdate or -au option in command line to update Flawnter directly without a scan and without need of editing the flawnter.cfg. Either way the auto update feature will ensure that Flawnter updates itself to the latest version, incorporating the latest rules, bug fixes, and features. For the GUI version, you can manually check for updates by selecting "Help->Check Update" from the menu. If a new version is available, it will prompt you to update​.

Does Flawnter support scanning local files/folders?

Yes. Flawnter supports scanning local files and folders.

Does Flawnter support scanning GitHub/GitLab repositories?

Yes. Flawnter also supports scanning BitBucket and Azure DevOps repositories.

Does Flawnter support scanning Confluence for passwords and secrets?

Yes. Flawnter also supports scanning for secrets in Jira and Asana.

Does Flawnter also support command line besides GUI?

Yes, Flawnter fully supports command line options. You can perform the same actions via the command line as you would in the GUI, except for DAST Interactive scans, which require user interaction.

What are the differences between DAST and DAST Interactive in Flawnter?

Flawnter DAST is automated dynamic analysis to find security vulnerabilities in your running web applications. DAST Interactive is kind of like a proxy, it allows the user to interact with a web application while it captures the http/https requests and responses where you can later scan for security vulnerabilities. It allows you to test your application by controlling what feature you want to scan with DAST.

Does Flawnter offer trial license for evaluating the product?

Yes. Please contact info@cybertest.com to request a trial license or submit request using our demo form https://www.flawnter.com/demo.

Does Flawnter offer enterprise-wide licensing?

Yes. We offer competitive pricing for enterprise-wide licenses. Please contact info@cybertest.com for the details.

What platforms does Flawnter support?

Flawnter supports Windows, Linux and Mac OS.

What is needed to run Flawnter?

You need Java 8 or later to run Flawnter. Please refer to our documentation page for the details.

Does Flawnter offer extensions?

Yes, you can download Flawnter extensions for free from our website https://www.flawnter.com/download-extensions.