# Oscar Six Radar

> AI-powered vulnerability scanning platform that thinks like a hacker.

Oscar Six Radar is a SaaS penetration testing platform hosted on Google Cloud Platform. Users submit domains for automated security scanning and receive detailed PDF reports with findings, remediation recommendations, and risk scoring.

## Product Details

- **Pricing:** $99 per scan (pay-as-you-go, no subscription)
- **Scan Duration:** Under 60 minutes typical, 6-hour maximum timeout
- **Scanner IP:** 136.114.231.35 (allowlist this if behind a firewall)
- **Status:** Beta

## Scan Phases

### 1. Reconnaissance
Subdomain enumeration, DNS analysis, technology fingerprinting, WHOIS data collection.

### 2. Port & Service Scanning
Identifies open ports, running services, service versions, and banner grabbing.

### 3. Vulnerability Assessment
OWASP Top 10 testing, SSL/TLS configuration analysis, security header checks, CVE detection.

### 4. AI-Powered Analysis
All findings are validated by AI to reduce false positives. Each vulnerability is classified by severity with remediation guidance.

### 5. Report Generation
Executive summary, technical findings, remediation recommendations, and risk scoring compiled into a PDF report.

## Report Structure

- **Cover Page** — Domain, scan date, risk rating
- **Executive Summary** — Management-level overview of security posture
- **Technical Findings** — Detailed vulnerability breakdown for engineers
- **Remediation Recommendations** — Prioritized action items
- **Appendix** — Raw scan data and full technical details

## Scan Workflow

1. **Enter Domain** — Submit target domain; system checks DNS and HTTP reachability
2. **Domain Validation** — System verifies domain resolves and is accessible
3. **Verify Ownership** — Add a DNS TXT record to prove you own the domain (one-time per domain)
4. **Payment** — $99 per scan via Stripe
5. **Scan Execution** — Automated engine runs a full security assessment
6. **Report Delivery** — PDF report emailed and available in dashboard

## Compliance

Reports help satisfy SOC2, ISO27001, and similar auditing requirements with detailed logs and findings documentation.

## Restricted Domains

The following domain types cannot be scanned:
- Government: .gov, .mil, .edu
- Sanctioned countries: .ru, .cn, .kp, .ir, .sy, .cu, .by, .ve

## Key Pages

- [Home](https://radar.oscarsixsecurityllc.com/)
- [How It Works](https://radar.oscarsixsecurityllc.com/how-it-works.html)
- [Login / Dashboard](https://radar.oscarsixsecurityllc.com/login.html)
- [Terms of Service](https://radar.oscarsixsecurityllc.com/legal/terms.html)
- [Liability Waiver](https://radar.oscarsixsecurityllc.com/legal/waiver.html)

## Contact

- Sales: sales@oscarsixsecurityllc.com
- Support: support@oscarsixsecurityllc.com