Detectify
Dynamic application security testing (DAST) software
Penetration testing tools
Vulnerability scanner software
Attack surface management software
Exposure management platforms
Website security software
DevSecOps software
Vulnerability management software
Web security software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if Detectify and its alternatives fit your requirements.
€90 per month
Free Trial
Free version unavailable
Small
Medium
Large
- Media and communications
- Information technology and software
- Education and training
What is Detectify
Detectify is a web application security testing platform that performs automated dynamic scanning of websites and web applications to identify exploitable vulnerabilities and misconfigurations. It is used by security and engineering teams to run recurring scans, validate remediation, and support security testing in development and production environments. The product combines an external attack-surface view (including asset discovery/monitoring) with DAST-style testing and reporting workflows. It also offers integrations intended to fit into CI/CD and issue-tracking processes.
Automated web vulnerability scanning
Detectify focuses on automated testing of web applications from the outside, which aligns with common DAST use cases such as finding OWASP-style web flaws and configuration issues. It supports repeatable scans that teams can schedule and rerun to confirm fixes. This makes it practical for continuous testing where manual penetration testing capacity is limited.
Attack surface visibility features
In addition to scanning a single target, Detectify includes capabilities oriented toward identifying and monitoring internet-facing assets. This helps teams keep track of exposed domains/subdomains and prioritize what to scan. For organizations with frequent changes to web properties, this can reduce blind spots compared with scanning only known URLs.
Workflow and integration support
Detectify provides reporting and collaboration features that support triage and remediation workflows. It is commonly positioned to integrate with development pipelines and ticketing systems so findings can be routed to engineering teams. This can reduce friction compared with running standalone scanners and manually transferring results.
Limited to web-exposed testing
As a DAST-oriented product, Detectify primarily assesses what it can reach over the network and what it can infer from application behavior. It does not replace code-level testing approaches (such as SAST) or dependency analysis for third-party libraries. Organizations typically need complementary tools and processes for full application security coverage.
Depth varies by application complexity
Automated scanners can struggle with complex authentication flows, highly dynamic single-page applications, and business-logic vulnerabilities. Coverage and accuracy depend on how well the scanner can crawl the application and maintain session state. Teams may still require manual validation or targeted testing for high-risk applications.
Remediation context may be limited
DAST findings often provide evidence of an issue but may not always map cleanly to the exact source-code location responsible for the behavior. This can increase time-to-fix when engineering teams need precise code pointers. Additional investigation or correlation with other security tooling may be required to speed remediation.
Plan & Pricing
| Plan / Product | Price | Key features & notes |
|---|---|---|
| Surface Monitoring | €302 per month (starting price shown on site) | Coverage for up to 25 subdomains (example starting tier); continuous discovery + lightweight testing across domains; recommended to combine with other products for full coverage. See Detectify pricing page for details. |
| Application Scanning | €90 per month (starting price shown on site) | In-depth authenticated DAST for web applications; per-domain scan profiles; unlimited scans per profile during trial; scales per scan profile. |
| API Scanning | €90 per month (starting price shown on site) | Dynamic API testing with fuzzing and payload variation; priced per API (starting price shown). |
| Enterprise / Custom | Custom pricing (contact sales) | Scalable, bespoke offerings for large customers; add-ons include SSO/SAML, Dedicated CSM, BYOK, multi-team setup, bespoke integrations, custom legal terms. |
Notes: Pricing page explicitly shows "Start a 2-week free trial" for Surface Monitoring and Application Scanning. The site also documents payment options and a minimum invoice order value of €1500 / $1650 for invoiced customers.
Seller details
Detectify AB
Stockholm, Sweden
2013
Private
https://detectify.com
https://x.com/detectify
https://www.linkedin.com/company/detectify/
