How It Works

From domain entry to final report — here's every step of the process and what happens under the hood.

Your Scan Workflow

1
🌐
Enter Your Domain
Type your target domain. We check DNS and HTTP reachability before proceeding.
2
Domain Validation
We verify the domain resolves and is reachable. If behind a firewall, allowlist our scanner IP: 136.114.231.35
3
🔑
Verify Ownership
Add a DNS TXT record to prove you own the domain. Permanent — only needed once.
4
💳
Payment
$99 per scan via Stripe. Use code LAUNCH49 for $50 off. (For a limited time only)
5
⚙️
Scan Execution
Our automated engine runs a comprehensive multi-phase vulnerability assessment.
6
📄
Report Delivery
A PDF report is emailed to you and available for download in your dashboard.
DNS verification guides: GoDaddy | Namecheap | Cloudflare

What Our Scanner Does

During Step 5, our engine performs an 8-phase automated security assessment combining industry-standard tools with AI-powered analysis:

1
Reachability & SSL Check Verifies your site is accessible, validates SSL certificates (expiration, hostname, protocol versions), and detects WAF/CDN protection (Cloudflare, Akamai, AWS WAF, Sucuri, Imperva).
2
Technology Detection Fingerprints your web server, programming languages, frameworks, and CMS across common web ports (80, 443, 8080, 8443, 3000, 5000, 8000) using httpx.
3
Security Header Analysis Checks for missing or misconfigured headers: HSTS, Content-Security-Policy, CORS, X-Frame-Options, cookie flags (HttpOnly, Secure, SameSite), and tests for open redirects.
4
Reconnaissance Discovers subdomains, scans ports via nmap, probes for sensitive files (.git, .env, backups, config files), API endpoints (GraphQL, Swagger, REST), and scans JavaScript source for exposed secrets and API keys.
5
AI-Powered Test Selection Claude AI analyzes your detected technology stack and selects the most relevant vulnerability templates — so a WordPress site gets WordPress-specific checks, not irrelevant Django tests.
6
Vulnerability Scanning Runs Nuclei (by ProjectDiscovery) with targeted templates to test for thousands of known vulnerabilities including the OWASP Top 10 (XSS, SQLi, SSRF, broken auth, and more).
7
AI Analysis Claude AI filters false positives, identifies attack chains (how multiple vulnerabilities combine for greater impact), and maps findings to compliance frameworks (PCI-DSS, HIPAA, SOC 2).
8
Report Generation Produces a professional PDF with executive summary, prioritized findings, remediation steps, attack scenarios, and compliance gap analysis.

Tools used:

Nmap httpx Nuclei OpenSSL Claude AI

Understanding Your Report

Your PDF report is organized into clear sections so both technical and non-technical stakeholders can take action:

📋 Executive Summary

High-level overview for management — key risks, overall security posture, and top priorities without deep technical detail.

🔧 Technical Findings

Every vulnerability grouped by severity (Critical, High, Medium, Low, Info) with evidence and affected URLs.

✅ Remediation Guide

Prioritized fix recommendations for each finding, with specific steps and search links for more information.

⚔️ Attack Scenarios

Real-world narratives showing how an attacker could exploit the discovered vulnerabilities.

🔍 Reconnaissance Overview

Discovered subdomains, open ports, exposed files, API endpoints, and other intelligence gathered.

📊 Compliance Gap Analysis

How your findings map to PCI-DSS, HIPAA, SOC 2, and OWASP Top 10 requirements.

Common Questions

Have more questions about the scan process, DNS verification, or re-scanning?

View our full FAQ →

Start Your Scan

© 2026 Oscar Six Security, LLC. All rights reserved.

Main Site · Contact