Features
Multi-provider AI: Ollama, OpenAI, Claude, Gemini
RAG Knowledge Engine with 80,000+ security docs
Cross-product correlation with 10 severity escalation rules
Phase 2 active verification with AI-driven payload generation
WAF detection and evasion for 25+ WAF types
250+ curated OWASP payloads
Out-of-band testing (XSS, SSRF, blind injection, RFI, XXE)
Privacy-first local processing with Ollama
Open source Community Edition
Standalone web scanner (Enterprise) with REST API and CI/CD
Static code scanning (SOURCE) with PoC generation and SARIF output
Network/infrastructure scanning (Sn1per AI Core)
OWASP Top 10 coverage beyond pattern matching
Feedback loop: verified findings improve future results
AI-powered detection of BEC, VEC, and phishing attacks
Conversational analysis to spot impersonation and social engineering
Custom detection rules with YARA-like language (Sublime Script)
Real-time threat detection and automated incident response
Threat hunting interface for proactive investigation
Deep visibility into email attack patterns
Integration with Microsoft 365 and Google Workspace
Low false positive rates through adaptive learning
Behavioral analysis of sender and recipient patterns
Automated remediation (quarantine, alert, etc.)