Features
Multi-provider AI: Ollama, OpenAI, Claude, Gemini
RAG Knowledge Engine with 80,000+ security docs
Cross-product correlation with 10 severity escalation rules
Phase 2 active verification with AI-driven payload generation
WAF detection and evasion for 25+ WAF types
250+ curated OWASP payloads
Out-of-band testing (XSS, SSRF, blind injection, RFI, XXE)
Privacy-first local processing with Ollama
Open source Community Edition
Standalone web scanner (Enterprise) with REST API and CI/CD
Static code scanning (SOURCE) with PoC generation and SARIF output
Network/infrastructure scanning (Sn1per AI Core)
OWASP Top 10 coverage beyond pattern matching
Feedback loop: verified findings improve future results
Agent mode for autonomous task execution
Multi-LLM support: Haiku 4.5, GPT-5 mini, Claude Opus 4.7 on Pro+
Natural-language CLI commands (Copilot CLI)
Code completions and next edit suggestions
AI-powered code review on pull requests
Copilot Spaces for shared project context from docs and repos
Copilot App for direct agent-from-issue workflows
MCP server integration with enterprise allow lists
Audit logs and agent usage governance for enterprise
Third-party agent integration (Claude Code, Codex)
Token-based metered billing with monthly credits
Copilot in VS Code, JetBrains, Xcode, Neovim, Eclipse, Raycast, Zed
Cloud agent support for background task execution