NightVision Platform

NightVision is a Dynamic Application Security Testing (DAST) platform designed to integrate into developer workflows and CI/CD pipelines for automated scanning of web applications and APIs. **Core Functionality:** NightVision performs authenticated and unauthenticated vulnerability scanning of web applications and APIs. It supports scanning of both documented and undocumented APIs by automatically generating API documentation through its auto-documentation capability. **API Discovery:** The platform includes an "API Envy" module that handles API discovery and documentation. It uses greybox crawling techniques to cover undocumented APIs, reducing inventory management risk. **CI/CD Integration:** NightVision integrates directly into CI/CD pipelines, enabling security scans to be triggered on each commit or pull request. This allows development and security teams to maintain continuous testing without significant slowdowns. **Private Network Scanning:** A smart proxy feature allows teams to scan applications hosted on private networks without requiring changes to existing infrastructure. **Remediation:** When vulnerabilities are found, NightVision maps issues back to the specific location in the codebase, providing developers with the context needed to remediate findings. Vulnerabilities are validated before being surfaced. **Setup & Usability:** The platform is designed for minimal setup time, targeting developers at any stage of coding, committing, or pull request workflows without requiring prior security expertise.