Cyber FAQs

Question 1

How do I connect Cyber to my API for testing?

Accepted Answer

You can connect Cyber to your API by providing the necessary API endpoints, authentication information (credentials or tokens), parameter names, test data, expected behavior, and authentication flow details.

Question 2

What kind of vulnerabilities can Cyber detect?

Accepted Answer

Cyber can detect a wide range of vulnerabilities including SQL injection, XSS, JWT vulnerabilities, authentication bypass issues, data leakage, rate limiting bypass, and insecure HTTP header configurations.

Question 3

What is Cyber and what does it do?

Accepted Answer

Cyber is a tool designed to test backend APIs for security vulnerabilities. It uses a Model Context Protocol (MCP) server to identify common security issues like SQL injection, XSS, JWT vulnerabilities, and data leaks.

Question 4

What authentication methods does Cyber support?

Accepted Answer

Cyber supports Basic Authentication, Token Authentication (including JWT), OAuth2 Authentication, and custom API login methods, allowing it to test a variety of secured API endpoints.

Question 5

What are MCP tools and how does Cyber use them?

Accepted Answer

MCP tools provide specialized resources for security testing, including checklists and guides that can be used by LLMs to identify common security issues in APIs.

Cyber

概要

主な機能

ユースケース