ImmuniWeb® AI PlatformNeuron

ImmuniWeb® Neuron

ImmuniWeb® Neuron unleashes the power of Machine Learning and AI to take traditional web vulnerability
scanning to the next level. While detecting more vulnerabilities compared to automated web scanners,
every web vulnerability scan by Neuron is equipped with a contractual zero false positive SLA.

AI-Powered Web Security Scanning

Zero False Positive SLA

Money-Back Guarantee for
a single false-positive

AI-Driven Testing

Deep Learning engine detects
sophisticated vulnerabilities

Expert Assistance

Our security analysts are here to
help and answer your questions

Unlimited Scalability

Simultaneous web scanning of
hundreds or thousands apps

DevSecOps Native

Full automation of testing and
CI/CD pipeline integrations

How it works

Configure and
start scanning
Get valid findings
in real-time
Fix and re-scan
automatically

Free Trial Ask a Question

More Findings. No False Positives.

CI/CD and DevSecOps Native

Web Security Scanning for Any Need

Cloud-Native Apps

Test your full web stack at
AWS, Azure or GCP

Single Page Apps

Detect vulnerabilities in
SPA and Ajax apps

APIs & Web Services

Find security flaws in your
microservices and APIs

Open-Source Security

Discover security risks in
open source you use

Authenticated Scans

Manual authentication scripts,
SSO & MFA scanning

SDLC Automation

Integrate fully automated scanning
into your CI/CD pipeline

Detect Everything. Stay Compliant.

A1: Broken Access Control
A2: Cryptographic Failures
A3: Injection
A4: Insecure Design
A5: Security Misconfiguration
A6: Vulnerable and Outdated Components
A7: Identification and Authentication Failures
A8: Software and Data Integrity Failures
A9: Security Logging and Monitoring Failures
A10: Server-Side Request Forgery

API1: Broken Object Level Authorization
API2: Broken User Authentication
API3: Excessive Data Exposure
API4: Lack of Resources & Rate Limiting
API5: Broken Function Level Authorization
API6: Mass Assignment
API7: Security Misconfiguration
API8: Injection
API9: Improper Assets Management
API10: Insufficient Logging & Monitoring

Most Comprehensive Web Security Scanning

In every scan by ImmuniWeb Neuron

Web Security Scanning

Authenticated Scans
Web Security Scanning:
- SSL/TLS Weaknesses
- Insecure HTTP Headers
- OWASP Top 10 Vulnerabilities
- OWASP API Top 10 Vulnerabilities
Vulnerability Knowledge Base:
- WordPress & 400 More CMS
- 150,000+ CMS Plugins & Themes
- 12,000+ JavaScript Libraries
- 10,000+ Known CVE-IDs
Full Customization of Scanning
Turnkey CI/CD Automation

Reporting

Zero False Positive SLA Money back

Contractual money-back guarantee for one single false positive.
Risk-Based Prioritization of Findings
Simple Instructions to Reproduce Findings
Web, PDF, JSON, XML and CSV Reports
Friendly Remediation Guidelines
Screenshots and Raw HTTP Data
Consolidated View of All Scans
CVE and CWE Mapping
CVSSv3.1 Scoring

Remediation

Seamless DevSecOps Integration
Unlimited Vulnerability Scans
Access to Our Security Analysts
2FA & RBAC Scan Management Dashboard
Unlimited Dashboard Users
Simple Scan Scheduling
Recurrent Scans

ImmuniWeb® Neuron Pricing

1 Add Targets

Enter or import targets

2 Configure Scanning

Schedule and customize testing

3 Discover Vulnerabilities

Get 100% valid findings 24/7

Target Range

Annual Price per Target

1-10 targets

575 USD

11-25 targets

550 USD

26-50 targets

525 USD

51-100 targets

500 USD

101-200 targets

475 USD

Over 200 targets

Ask Sales

Unlimited

Ask Sales

Book a Demo

Sales start on July 4, 2022

Frequently Asked Questions

Q

How do you define a target?

A

Each fully qualified domain name (FQDN) is a separate target. For example, a domain name and two subdomains are three separate targets.
Q

Can I add or modify targets after purchase?

A

You can add targets at any time, the minimum number of new targets available for purchase is ten. If a web application or API remains identical and simply changes its FQDN, you can normally change it at no additional cost by contacting support.
Q

How do you calculate annual subscription price?

A

The price depends only on the number of targets you have, please see the pricing table above. The minimum number of targets available for purchase is ten. For any number of targets, you will always have a full set of the above-mentioned features including access to our security analysts and contractual zero false positive SLA.
Q

Can ImmuniWeb Neuron replace penetration testing?

A

No, the current state of AI and Machine Learning technologies is still far from being capable to fully replace human intelligence. For penetration testing needs, we have a dedicated offering that includes expert manual testing. Of note, many laws and regulations require mandatory penetration testing that you cannot substitute with vulnerability scanning.
Q

Do you support authenticated scanning?

A

Yes, we support all modern types of authentication scanning for cloud-based and on-premise web applications and APIs.

Trusted by 1,000+ Global Customers

ImmuniWeb is an efficient and very easy-to-use solution that combines automatic and human tests. The results are complete, straightforward and easy to understand. It’s an essential tool for the development of the new digital activities

Didier Ramella
CISO

ImmuniWeb is the best and simplest way to secure your business online. It's really fantastic experience to get report with zero false positive with detailed actions how to resolve problems and remove vulnerabilities. I think ImmuniWeb is definitely the best alternative to pen testers. As well as a way to save on staff and other costs. I am glad that I can get it all without any hidden costs and without complicated licensing schemes

Nika Vachridze
Senior Information Security Officer

We believe ImmuniWeb platform would definitely address the common weaknesses seen in manual assessments. The AI-assisted platform not only automates the assessments, but also, executes them in a continuous, consistent and reliable fashion. Admittedly, the platform would definitely add quick wins and great ROI to its customers on their investment.

Abuhaneefa Fayaz
Information Security Officer

ImmuniWeb provides accurate assessment on the security posture of our cloud-based applications. The report provided is concise and easy to read with sound advisories on the necessary steps to fix the issues. What impressed me most was that no false-positive was listed and the vulnerabilities are real. ImmuniWeb certainly gives us the right level of assurance that our cloud-based applications are safe and "good-to-go" before we deploy them out to production

Lee Chye Seng
Director, Learning Systems and Applications

ImmuniWeb is an invaluable tool for iPresent with both automated and manual penetration testing. The fantastic manual testing has found even the most hidden and complicated bugs in our security and ImmuniWeb has delivered first class knowledge. The self-service interface also gives us great control to schedule and monitor tests when we need them

Neil Bostrom
Chief Technical Officer

ImmuniWeb is a great innovative service that brings unbeatable ROI. It is undoubtedly the best way to quickly and easily guarantee your customers that their data is safe with you - and yours too by the way! Efficient and effective!

Jean-Michel Beylard-Ozeroff
Head of IT