v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Steampipe logo 
Hub
Plugins
turbot/urlscan
Overview
16Tables
Versions
GitHub
steampipe plugin install urlscan

Table: urlscan_app - Query UrlScan Apps using SQL

UrlScan is a service within that allows users to scan and analyze web applications for potential security vulnerabilities. It provides a comprehensive view of the application's security posture, including details about associated tags, related URLs, and the app's overall popularity. UrlScan helps users stay informed about the health and performance of their web applications and take appropriate actions when predefined conditions are met.

Table Usage Guide

The urlscan_app table provides insights into web applications within UrlScan. As a security analyst, explore app-specific details through this table, including associated tags, related URLs, and the app's overall popularity. Utilize it to uncover information about apps, such as those with potential security vulnerabilities, the relationships between apps and URLs, and the verification of app popularity.

Important Notes

  • You must specify the scan in the where clause to query this table.

Examples

List detected apps

Explore which applications have been detected by analyzing the results of a specific scan. This could be useful in identifying potential security threats or understanding the software landscape of a system.

select
  *
from
  urlscan_app
where
  scan = '54c78f69-5294-4a17-8ae0-a71943954e09';
select
  *
from
  urlscan_app
where
  scan = '54c78f69-5294-4a17-8ae0-a71943954e09';

Schema for urlscan_app

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
apptextThe app that was detected.
categoriesjsonbCategories for the app.
confidencejsonbConfidence level in detection of the app.
confidence_totalbigintTotal confidence in the app detection as a perceentage.
icontextIcon for the app.
scantext=ID of the scan result.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
websitetextWebsite of the app.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- urlscan

You can pass the configuration to the command with the --config argument:

steampipe_export_urlscan --config '<your_config>' urlscan_app