Launched this week
AttackerView
See your website the way attackers do
34 followers
See your website the way attackers do
34 followers
Type in any website. In 60 seconds, we'll tell you if someone can fake your emails, steal your cookies, break in through outdated software, or grab files you forgot to delete. We don't just list what's wrong. We show the actual attack path: how one small gap leads to a real problem. 65+ checks, updated with the exploits attackers are using right now. Plain English. No account needed. Free for 3 sites. Watchtower ($29/mo) monitors every hour so you don't have to. Try it: attackerview.com
Davvero interessante questa App, la farò conoscere a mia figlia che si occupa della gestione del sito web dell'attività di famiglia
@monica_giannini Grazie! Mi faccia sapere cosa viene fuori dalla scansione, sono curioso.
Hey PH! 👋 I'm Valerio. I've spent 8+ years in security, and I built AttackerView to automate the exact recon process I run before every engagement.
You type in your URL, and in 60 seconds we run the same steps I'd run by hand: DNS records, TLS certificates, email authentication, tech stack fingerprinting, and then the part I'm most proud of: we send proof-of-concept probes for 10 real-world exploits and show you whether they work on your site.
🎯 10 exploits we verify with proof:
- React2Shell (the React Server Components bug that earned a $1M bounty from Vercel)
- Drupalgeddon2 (one of the most famous web exploits ever)
- Path traversal in Grafana, Jira, Confluence, Apache, and Laravel Ignition
- 🚨 All on the US government's "actively exploited" watchlist
✅ We also run 65+ checks covering:
- Email authentication (whether your domain is set up to prove emails are really from you)
- How your cookies and security headers are configured
- What tech you're running and what's worth updating
- 25+ patterns worth reviewing in your HTTP responses
- The full attack path showing how findings connect to each other
🌟 Free for 3 sites with full results. No signup.
Watchtower ($29/mo) adds continuous monitoring — we re-check every hour and let you know when something changes.
Scan your own site and tell me what surprised you. I'm here all day.
https://attackerview.com
Just scanned my own website and apparently anyone can send emails pretending to be me?? I’ve been running this site for 15 years and had no idea. Already working on this to get it fixed, looks simple enough. Thank you so much, great product overall!
@alessandra_brunetti4 Ha, you'd be amazed how many sites we scan where this comes up!
Email authentication is one of those things nobody tells you to set up, and then one day you find out anyone could've been sending emails as you this whole time.
Good news: it really is a quick fix.
Retest the finding when you're done and you'll see it flip to green ✅
Thank you for sharing this!
scanned my startup's site, we're apparently missing a bunch of security headers. sent this to our dev
@nalbori_it That "send to our dev" moment is honestly the best feedback I can get. If you want, once your dev makes the changes you can rescan for free and confirm everything's cleared up. Takes 60 seconds.
ok I wasn't expecting to actually find anything but it flagged like 4 things on my site. cool tool
@dante_bellini Ha, that's the reaction I was going for. "I'll humor this tool for 30 seconds" and then it actually catches something. Out of curiosity, were any of the 4 things you already knew about, or all new?
@wolfie_ritz This is the comment that means the most to me. The sites you think are locked down are the ones where surprises matter. Were any of the issues things you'd actively decided against, or genuinely blind spots? Always curious how the results land for teams that already take security seriously.
@valbaudo We addressed the issues listed. We reran the scan and found that the situation is now clear. Thank you, I think we'll definitely be purchasing this software.