Scope overview
What BreachFound tests in a first-pass security scan.
BreachFound focuses on the web and API risk areas that are most useful to validate before launch, customer review, or a larger security engagement.
Authentication workflows
- Login and session handling weaknesses
- Obvious auth bypass opportunities
- Common OAuth or token handling missteps when exposed through the app surface
Authorization and access control
- Broken access control patterns
- IDOR-style object access issues
- Missing or weak ownership validation on sensitive routes
Injection and input handling
- SQL and related injection classes where exposed through the tested surface
- Input handling mistakes that can become exploitable through requests and parameters
- High-risk request flows that deserve deeper review if findings are present
API exposure and misconfiguration
- Risky API behavior visible from the submitted target
- Common security header and exposure issues
- Selected web and API misconfiguration patterns that affect launch readiness
Best use cases
- Before launch
- Before enterprise customer review
- Before fundraising or due diligence conversations
- Before deciding whether to purchase a deeper manual pentest
What this does not replace
- Social engineering, phishing, or physical security
- Broad internal network assessment or on-prem infrastructure review
- Deep source-code review by default
- Comprehensive human-led business-logic exploration in every edge case
- Formal compliance certification work by itself
Use this scope to decide whether BreachFound is enough for the moment.
If you need a fast first pass, BreachFound fits. If you need broader human-led assurance, use this scan as a starting point before investing in a deeper manual engagement.