Getting Started

Sign Up & SetupCreate your CoreFix account, configure your workspace, and prepare your first project.Your First Web ScanRun the first scan and understand the workflow from setup to results.GitHub AppConnect repositories and trigger automated scans from pushes and pull requests.Chrome ExtensionRecord authenticated browser workflows for deeper web application scanning.

---

Scan With CoreFix

Docker / Local CLIRun CoreFix scanners locally or on any server with Docker installed.Code ScanningScan your source code for vulnerabilities, secrets, and misconfigurations directly from your repository.Web ScanningScan live web applications with DAST, CVE checks, recon, and TLS analysis.CI/CD IntegrationAutomate security scanning in GitHub Actions, GitLab CI, Jenkins, and more — on every push or deployment.

---

Manage Findings

Creating ProjectsSet up projects to organize your repositories, web targets, and scan configurations in one place.Managing ProjectsUpdate project settings, manage scan targets, and control access and configurations.Viewing ResultsReview, prioritize, and act on security findings across all your scans and scanners.

---

AI, Models & Policies

AI EnrichmentSee how CoreFix uses AI to deduplicate, prioritize, and explain security findings with actionable context.Supported ModelsBrowse available AI models, BYOK support, and provider options for enriching your scan results.Model Availability MatrixCompare model availability across features, scan types, and AI providers at a glance.Model PricingUnderstand AI model costs, credit usage, and how BYOK affects pricing for enrichment features.