Trust in Protection, Trust in Us .
Guardians of Cyber Space .
Safeguarding Your Digital Identity .
Ensuring Security in the Digital Age .
Fortifying Your Cyber Defenses.
Securing Your Digital Frontier.
Documentation
Explore our comprehensive documentation to find technical guides, setup instructions, and troubleshooting resources.
Audit Mode SAST

The audit mode is used in situations where the code cannot be managed (external developments) or for specific languages, usually interpreted.

Requirements:

  • Connectivity with the DocSpot API
  • DocExploit CLI:
  • Working API-KEY
  • ProjectID

To launch an analysis in audit mode it’ll be used DocExploit CLI tool:

docexploit docspot analyze PROJECT_ID LANGUAGE PROJECT_PATH --key=API-KEY --${CRITICITY}=MAX_NUMBER --o=OUTPUT_FILE --git=USE_GIT
  • PROJECT_ID: Project id created in DocSpot
  • LANGUAGE: Language to analyze. Supported java, csharp, go, python, javascript, terraform and sap
  • PROJECT_PATH: Path of the project to analyze (or git repository if –git is set to true)
  • API-KEY: The key created in DocExploit dashboard
  • CRITICITY–>MAX_NUMBER: The maximum vulnerabilities allowed, the criticities are [“blocker”,”critical”,”major”,”minor”,”info”]. OPTIONAL
  • OUTPUT_FILE: File where analysis results will be saved. OPTIONAL
  • USE_GIT: If is true the PROJECT_PATH must a be a git URL. (It is needed that git is installed in the machine).

Some configurations can be added through a configuration file called docexploit.properties.

  • APIKEY = ${API-KEY}
  • DOCSPOT_API = ${CUSTOM-DOCSPOT-API}
  • more soon….

Example Python execution

Note: To find the vulnerability of the dependencies it is necessary to have them in the project folder, they are usually in any CD/CI process; after executing “mvn deploy” in a Maven project or “npm install” in a Javascript one for example.

Join Our Newsletter To Get The Latest Guides
Discover the new range of specialized and disruptive tools on the market, specialized in virtualized cloud and on-premise environments.
Gran Via, 18. 26001 Logrono, La Rioja
© DocExploit
Alcance para las actividades desarrolladas en su sede de Logroño
DOCEXPLOIT SL, con CIF B67868513, ha recibido financiación por parte de la Agencia de Desarrollo Económico de La Rioja. Esta financiación ha sido solicitada a través de la convocatoria 2025 de las ayudas destinadas al fomento de Nuevas Empresas de Base Tecnológica –Programa 1: Empresas de Base Tecnológica -en el marco del Programa de Redes Territoriales de Especialización Tecnológica (RETECH)-Proyecto TechFabLab, por valor de 320.394,76 € a través del expediente 2025-I-EBT-00001, y por valor de 257.317,75 € a través del expediente 2025-I-EBT-00009.
© 2024, All Rights Reserved