HTCAP 2017-10-31T18:30:19+00:00

Web application scanner

HTCAP is a web application scanner able to crawl single page application (SPA) in a recursive manner by intercepting ajax calls and DOM changes.

Htcap is not just another vulnerability scanner since it’s focused on the crawling process and uses external tools to discover vulnerabilities. It’s designed to be a tool for both manual and automated penetration test of modern web applications. The scan process is divided in two parts, first htcap crawls the target and collects as many requests as possible (urls, forms, ajax ecc..) and saves them to a sql-lite database. When the crawling is done it is possible to launch several security scanners against the saved requests and save the scan results to the same database. When the database is populated (at least with crawing data), it’s possible to explore it with ready-available tools such as sqlite3 or DBEaver or export the results in various formats using the built-in utilities.


Web application scanning with Htcap

10 March 2016 – Help Net Security

Htcap is a free web application scanner that can crawl single page applications in a recursive manner by intercepting Ajax calls and DOM changes.


More infos at official website


Your security is our priority

Ask for a quotation to secure your business network

Contact Us