Run #30002
completed
Production — https://robnez.com
Download Report
79%
Pass Rate
11
Passed
3
Failed
0
Skipped
Filter:
all
pass (11)
fail (3)
error (0)
skip (0)
✓
A01 - Broken Access Control: Unauthenticated access to protected API
OWASP Top 10 Security
200
421ms
✗
A02 - Cryptographic Failures: HTTPS enforced
OWASP Top 10 Security
200
301ms
✓
A02 - Cryptographic Failures: Secure cookie attributes
OWASP Top 10 Security
200
39ms
✓
A03 - Injection: XSS via query parameters
OWASP Top 10 Security
200
265ms
✓
A03 - Injection: SQL injection probe on auth endpoint
OWASP Top 10 Security
400
36ms
✓
A04 - Insecure Design: Registration without email verification
OWASP Top 10 Security
200
450ms
✓
A05 - Security Misconfiguration: Server version headers not exposed
OWASP Top 10 Security
200
252ms
✓
A05 - Security Misconfiguration: CORS policy is restrictive
OWASP Top 10 Security
200
31ms
✓
A06 - Vulnerable Components: No sensitive data in client bundle
OWASP Top 10 Security
200
372ms
✗
A07 - Identification & Auth Failures: Rate limiting on login
OWASP Top 10 Security
500
600ms
✓
A07 - Identification & Auth Failures: Password reset token expiry
OWASP Top 10 Security
200
443ms
✗
A08 - Software & Data Integrity: Content Security Policy header present
OWASP Top 10 Security
200
253ms
✓
A09 - Security Logging Failures: 404 errors are logged
OWASP Top 10 Security
200
471ms
✓
A10 - SSRF: External URL parameter not exploitable
OWASP Top 10 Security
404
33ms
Run started: 3/22/2026, 6:11:09 AM · Completed: 3/22/2026, 6:11:14 AM