# Product & API Documentation | BLACKBIRD Technologies (Formerly NOVA SECURITY) ## Docs - [Authentication](https://support.blackbirdsec.eu/api-documentation/authentication.md): BLACKBIRD provides an extensive API to start, delete, and view scans at any time. - [Best Practices](https://support.blackbirdsec.eu/getting-started/best-practices.md): Learn how to use BLACKBIRD to get the most of it and avoid common pitfalls that may impact your potential with it. - [Getting Started](https://support.blackbirdsec.eu/getting-started/getting-started.md): Get Started With BLACKBIRD Pentesting Suite - [Glossary](https://support.blackbirdsec.eu/getting-started/glossary.md): Common terminologies and definitions used on BLACKBIRD Web App Pentesting Suite - [Launching a Recon Scan](https://support.blackbirdsec.eu/getting-started/launching-your-first-scan/launching-recon-scan.md): In this article, we will go over how you can easily start a recon scan on your list of targets or target definition to map out as many hosts & live hosts as possible. - [Launching a Vulnerability Scan](https://support.blackbirdsec.eu/getting-started/launching-your-first-scan/launching-vulnerability-scan.md): In this article, we will go over how you can easily start a vulnerability scan on your list of target URLs or even a target definition to uncover vulnerabilities. - [BLACKBIRD Web Security Vulnerability Scanner](https://support.blackbirdsec.eu/getting-started/launching-your-first-scan/launching-your-first-scan.md): This page describes how you can scan your list of targets for security vulnerabilities using BLACKBIRD Web Security Vulnerability Scanner - [Navigation](https://support.blackbirdsec.eu/getting-started/navigation.md): Learn to navigate around BLACKBIRD Pentesting Suite - [Onboarding](https://support.blackbirdsec.eu/getting-started/onboarding.md): Get Started With BLACKBIRD Pentesting Suite - [Common Use Cases & Workflows](https://support.blackbirdsec.eu/getting-started/preferred-use-cases.md): Learn how customers use BLACKBIRD to get the most of it. - [Notifications](https://support.blackbirdsec.eu/notifications/notifications.md): Learn how to configure your notifications settings to get notified by BLACKBIRD - [OAST Server](https://support.blackbirdsec.eu/oast-server/oast-server.md): OAST Server is your personal private Out-of-Band (OOB) Server designed for Out-of-band Application Security Testing (OAST). - [Core Values](https://support.blackbirdsec.eu/overview/blackbird-mission-vision-values/core-values.md): Learn more about your future with BLACKBIRD - [Mission](https://support.blackbirdsec.eu/overview/blackbird-mission-vision-values/mission.md): Learn more about your future with BLACKBIRD - [Vision](https://support.blackbirdsec.eu/overview/blackbird-mission-vision-values/vision.md): Learn more about your future with BLACKBIRD - [Capabilities](https://support.blackbirdsec.eu/overview/capabilities.md): Learn more about BLACKBIRD's capabilities - [For Who?](https://support.blackbirdsec.eu/overview/for-who.md): BLACKBIRD Web App Pentesting Suite is a toolkit for penetration testers. It was designed by and for penetration testers all along. - [Introduction](https://support.blackbirdsec.eu/overview/introduction.md): BLACKBIRD Web App Pentesting Suite is a complete toolkit for penetration testers and security professionals who want to save time and find more security vulnerabilities by leveraging the latest attack techniques derived from the competitive and ever-evolving bug bounty world. - [Why BLACKBIRD Web App Pentesting Suite](https://support.blackbirdsec.eu/overview/why-blackbird-web-app-pentesting-suite.md): There are several reasons why it'd be a more wise decision to choose us above any other alternative. This page outlines all of the reasons why. - [Content Discovery Scanner](https://support.blackbirdsec.eu/pentesting-tools/content-discovery-scanner.md): SPIDER X is a comprehensive content discovery scanner. - [CORS Misconfiguration Scanner](https://support.blackbirdsec.eu/pentesting-tools/cors-misconfiguration-scanner.md): CORSCANNER is an advanced CORS Misconfiguration scanner. - [Cross-Site Scripting (XSS) Scanner](https://support.blackbirdsec.eu/pentesting-tools/cross-site-scripting-xss-scanner.md): XSSCANNER is an advanced Cross-Site Scripting (XSS) scanner. - [Fuzzer](https://support.blackbirdsec.eu/pentesting-tools/fuzzer.md): Fuzzer is an advanced web fuzzer. - [Global Configuration](https://support.blackbirdsec.eu/pentesting-tools/global-configuration.md): BLACKBIRD offers a set of semi-automated pentesting tools that you can make use of. This section is dedicated to the configuration of each tool. - [JavaScript File Monitor](https://support.blackbirdsec.eu/pentesting-tools/javascript-file-monitor.md): JSAlert is a simple JavaScript file monitoring tool. - [JavaScript File Scanner](https://support.blackbirdsec.eu/pentesting-tools/javascript-file-scanner.md): JSAUDITOR is a comprehensive JavaScript auditing tool. - [LFI, RFI & LFD Scanner](https://support.blackbirdsec.eu/pentesting-tools/lfi-rfi-lfd-scanner.md): L8R (LFISCANNER) is an advanced Local File Inclusion (LFI), Remote File Inclusion (RFI) & Local File Disclosure (LFD) Scanner. - [Open URL Redirect Scanner](https://support.blackbirdsec.eu/pentesting-tools/open-url-redirect-scanner.md): REDIRECT X is an advanced scanner open URL redirect scanner. - [OS Command Injection Scanner](https://support.blackbirdsec.eu/pentesting-tools/os-command-injection-scanner.md): CISCANNER (OS Command Injection Scanner) is a specialized OS Command Injection Scanner. - [Pentesting Tools](https://support.blackbirdsec.eu/pentesting-tools/pentesting-tools.md): BLACKBIRD offers a set of semi-automated pentesting tools that you can make use of. This section is dedicated to the usage of each tool. - [Server-Side Request Forgery (SSRF) Scanner](https://support.blackbirdsec.eu/pentesting-tools/server-side-request-forgery-ssrf-scanner.md): S9R (SSRFSCANNER) is a specialized Server-Side Request Forgery (SSRF) scanner. - [Server-Side Template Injection (SSTI) Scanner](https://support.blackbirdsec.eu/pentesting-tools/server-side-template-injection-ssti-scanner.md): INJECT49 is a sophisticated Server-Side Template Injection (SSTI) scanner. - [SQL Injection (SQLi) Scanner](https://support.blackbirdsec.eu/pentesting-tools/sql-injection-sqli-scanner.md): SQLS (SQLSCANNER) is an powerful SQL Injection (SQLi) scanner. - [Subdomain Takeover Scanner](https://support.blackbirdsec.eu/pentesting-tools/subdomain-takeover-scanner.md): CNAME X is a sophisticated subdomain takeover scanner. - [WAYPOINTS Template-Based Scanner](https://support.blackbirdsec.eu/pentesting-tools/waypoints-template-based-scanner/waypoints-template-based-scanner.md): WAYPOINTS is a scalable solution to define your own personalized scan rules to look for security vulnerabilities on your organisation's or company's network. - [Creating a WAYPOINTS template](https://support.blackbirdsec.eu/pentesting-tools/waypoints-template-based-scanner/waypoints-templates/creating-a-waypoints-template.md): **Templates** or **Scan Rules** are predefined JSON objects to instruct WAYPOINTS to look for security vulnerabilities across your organisation's or company's network. In this guide I will go over how you can create your private template. - [What is a WAYPOINTS template or scan rule?](https://support.blackbirdsec.eu/pentesting-tools/waypoints-template-based-scanner/waypoints-templates/what-is-a-waypoints-template-scan-rule.md): **Templates** or **Scan Rules** are predefined JSON objects to instruct WAYPOINTS to look for security vulnerabilities across your organisation's or company's network. In this guide we will go over what templates (or scan rules) are. - [Create VPN Connection Profiles](https://support.blackbirdsec.eu/vpn-connection-profiles/create-vpn-connection-profiles.md): Learn how to create a VPN Connection Profile within BLACKBIRD to instruct the scanners to reach internal networks. - [VPN Connection Profiles](https://support.blackbirdsec.eu/vpn-connection-profiles/vpn-connection-profiles.md): BLACKBIRD can be configured to use VPN profiles to instruct the scanners to reach internal networks. - [Upload Custom Wordlists](https://support.blackbirdsec.eu/wordlists/upload-custom-wordlists.md): Learn how to upload a custom wordlist to use within BLACKBIRD for fuzzing. - [Wordlists](https://support.blackbirdsec.eu/wordlists/wordlists.md): BLACKBIRD's Fuzzer supports two types of wordlists: managed and custom (private) wordlists. ## OpenAPI Specs - [openapi](https://support.blackbirdsec.eu/openapi.json) ## Optional - [Contact Support](mailto:support@blackbirdsec.eu) - [Discord Community](https://app.blackbirdsec.eu/discord) - [Blog](https://blog.blackbirdsec.eu/)