You can use our API to manage your targets, view your issues, kick off scans and retrieve your results - why not integrate Intruder into your development pipeline for maximum peace of mind?
Everything you need to know can be found on our API Reference Page.
What is the Intruder API?
Our API is organised around REST. It has predictable resource-oriented URLs, accepts form-encoded request bodies, returns JSON-encoded responses, and uses standard HTTP response codes, authentication, and verbs.
The Intruder RESTful API Reference provides a detailed list of all API endpoints and their descriptions. All calls to the API are validated against an API token. You can check this page to learn how to create an access token for your account.
Our API is rate-limited on a per-user basis. If the API receives too many requests for a single access token, the API will start rejecting requests. See more details here.
To get started with our API, your first stage will be to generate an API Access Token for your Intruder account. Check out this page to learn how to create an access token for your account.
Managing your Targets
With our variety of Target endpoints, you can:
list targets on your account
add targets (including adding in bulk)
You can also list the licences on your account and the targets associated with them with our Licences endpoint.
Viewing your Issues
With the Issue endpoints, you are able to:
List all issues on your account
List occurrences of a specific issue
Retrieve the Raw Scanner Output for a particular occurrence of an issue
β
Kicking off Scans
With our Scans endpoints, you are able to:
list current scans on your account (as well as filter by status)
kick off a new scan on the specified target or tag