Security Tools Explained
seeshare uses six industry-standard security tools to scan your websites from different angles, with your tier determining which tools are included. This article explains what each tool does, what it detects, and how Essential and Professional differ in their tool coverage.
Security Tools Explained
seeshare uses multiple industry-standard security tools to scan your websites from different angles. Each tool specializes in detecting different types of vulnerabilities, and your tier determines which tools are included.
Tool Breakdown
Nuclei — CVE Scanner (Essential & Professional)
Nuclei is a fast, template-based vulnerability scanner that checks for known CVEs using thousands of community-maintained templates. It detects known software vulnerabilities, misconfigurations, exposed sensitive files, default credentials, and technology fingerprinting.
RetireJS — Deprecated JavaScript Scanner (Essential & Professional)
RetireJS identifies JavaScript libraries on your website that have known security vulnerabilities. It detects outdated versions of jQuery, Angular, React, and other frontend libraries, maps each to its known CVEs, and provides upgrade recommendations.
ZAP — Application Security Scanner (Essential: passive only | Professional: active & passive)
OWASP ZAP is a comprehensive web application security scanner. In passive mode (Essential), it observes traffic and responses without modifying requests, detecting insecure headers, cookie issues, and information disclosure with no impact on your site's performance. In active mode (Professional), it sends crafted requests to actively test for XSS, SQL injection, CSRF, and more, and crawls your site deeply to discover all pages and endpoints.
WordPress Scanner (Essential & Professional)
A specialized scanner for WordPress sites that checks for plugin and theme vulnerabilities using the Wordfence database, WordPress core version issues, common misconfigurations, and exposed wp-admin and sensitive files. Adding WordPress credentials allows deeper scanning of authenticated areas.
Nmap — Network Scanner (Professional only)
Nmap scans the network infrastructure hosting your website, identifying open ports, service versions, operating system details, and network-level misconfigurations such as unnecessarily exposed management interfaces.
OpenVAS — Host-Level Vulnerability Scanner (Professional only)
OpenVAS provides deep host-level vulnerability scanning including comprehensive assessment of web servers, network service vulnerability detection, configuration auditing, and compliance checking. For best results, configure authentication credentials.
GDPR Web Scanner (Professional only)
A specialized scanner for GDPR compliance that checks for cookie consent banner presence and functionality, pre-consent cookie loading, third-party tracker detection, privacy policy presence, and data collection notice compliance.
Tier Comparison
Essential includes Nuclei, RetireJS, ZAP passive mode, and the WordPress Scanner. Professional includes everything in Essential plus ZAP active mode, Nmap, OpenVAS, and the GDPR Web Scanner.
Which Tier Should You Choose?
Essential is right if you have a simple website or blog, primarily need visibility into known vulnerabilities and outdated libraries, and don't handle sensitive user data. Professional is right if you run an e-commerce site or handle user data, need active vulnerability testing, require compliance reporting for HIPAA or GDPR, or want network-level and host-level security coverage.