Skip to main content
Browse the full Vigolium API surface below. Each row links to a dedicated reference page with request/response details, parameters, and examples. Base URL: http://localhost:9002 (default)

General

CategoryDescriptionReference
OverviewServer startup, health checks, authentication, and common endpointsView →
AuthenticationBearer token auth, file-based user system, roles, and loginView →

Core Endpoints

CategoryDescriptionReference
ProjectsMulti-tenant data isolation — all scan data is scoped to a projectView →
ScanSingle-target scans, scan management, history, pause/resume, and logsView →
FindingsList, retrieve, and delete vulnerability findings with filteringView →
HTTP RecordsRequest/response records with filtering, pagination, and sortingView →
IngestionImport data via URLs, curl commands, HAR, OpenAPI, Burp, PostmanView →

AI & Agent

CategoryDescriptionReference
AgentQuery, autopilot, and swarm run modes with SSE streaming and OpenAI-compatible chatView →

Configuration & Scope

CategoryDescriptionReference
ConfigView and update server configuration with hot reload supportView →
ScopeControl which HTTP records are in scope for scanningView →
ModulesList active and passive scanner modules with search and tag filteringView →

Integrations & Extensions

CategoryDescriptionReference
ExtensionsManage JavaScript and YAML extensions for custom scanning logicView →
Source ReposLink application source code to target hostnames for source-aware scanningView →
GitHubOAuth-based GitHub integration for repository browsing and cloningView →

Data & Diagnostics

CategoryDescriptionReference
StatsAggregated statistics on HTTP records, modules, and findingsView →
OAST InteractionsOut-of-band security testing interactions from interactsh callbacksView →
DatabaseUnified CRUD API for any database table with pagination and filteringView →