1Request API Access: Submit a request at /api-access with your use case and expected usage
2Wait for Approval: Admin will review and approve your request within 24-48 hours
3Get Your API Key: Once approved, you'll receive an API key via email (shown only once!)
4Start Scanning: Use your API key in the Authorization header to make requests
All API requests require authentication via Bearer token in the Authorization header:
Authorization: Bearer YOUR_API_KEY100 req/hour
Suitable for small to medium projects
1,000 req/hour
For high-volume applications
X-RateLimit-Limit-Hourly: 100X-RateLimit-Limit-Daily: 1000/api/v1/scanInitiate a new security scan for a URL
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
{
"url": "https://example.com",
"options": {
"includePerformance": true,
"includeOWASP": true
}
}curl -X POST https://nextgenscan.com/api/v1/scan \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{
"url": "https://example.com",
"options": {
"includePerformance": true,
"includeOWASP": true
}
}'/api/v1/scanRetrieve a paginated list of your scans with optional filters
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
{
"page": "1",
"limit": "10",
"filter": "all | critical | warnings | excellent",
"sort": "date-desc | date-asc | score-desc | score-asc"
}curl -X GET "https://nextgenscan.com/api/v1/scan?page=1&limit=10&filter=critical" \ -H "Authorization: Bearer YOUR_API_KEY"
/api/v1/scan/:idRetrieve detailed results for a specific scan
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
curl -X GET https://nextgenscan.com/api/v1/scan/SCAN_ID \ -H "Authorization: Bearer YOUR_API_KEY"
/api/v1/scan/:idUpdate scan tags, notes, bookmark status, and custom metadata
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
curl -X PATCH https://nextgenscan.com/api/v1/scan/SCAN_ID \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{"tags": ["production", "critical"], "isBookmarked": true}'/api/v1/scan/:idPermanently delete a scan
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
curl -X DELETE https://nextgenscan.com/api/v1/scan/SCAN_ID \ -H "Authorization: Bearer YOUR_API_KEY"
/api/v1/analyticsRetrieve comprehensive analytics for your scans
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
curl -X GET "https://nextgenscan.com/api/v1/analytics?days=30" \ -H "Authorization: Bearer YOUR_API_KEY"
/api/v1/webhooksCreate a webhook to receive real-time notifications
Authentication:✅ Required
Rate Limit:PRO: 100/hour, ENTERPRISE: 1000/hour
curl -X POST https://nextgenscan.com/api/v1/webhooks \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{"url": "https://your-domain.com/webhook", "events": ["SCAN_COMPLETED"]}'/api/v1/batchScan multiple URLs in a single batch operation
Authentication:✅ Required
Rate Limit:PRO: 10 batches/hour, ENTERPRISE: 100 batches/hour
curl -X POST https://nextgenscan.com/api/v1/batch \
-H "Authorization: Bearer YOUR_API_KEY" \
-H "Content-Type: application/json" \
-d '{"urls": ["https://site1.com", "https://site2.com"], "name": "Weekly Scan"}'Invalid or missing API key
API key does not have required permissions
Resource not found
Rate limit exceeded
Unexpected server error
Can't find what you're looking for? Our support team is here to help.