Blog

GitHub

Discord

Contact Us

Metlo

Get Started

Sign In

Simulate an Attack

Welcome to Metlo

Getting Started

Getting Started with Metlo Cloud

Security

Performance

After you connect your apps, Metlo scans your API traffic to give an overview of all your endpoints, the type of data they contain, whether they are authenticated or not and if they contain sensitive data. You can use endpoint discovery to find **every** API endpoint in your organization. This can guide your security program and can also surface endpoints that you didn't even know existed.

Endpoint Discovery

Sensitive Data

Authentication

Custom Sensitive Data

Attack Detection

Attack Context

Node

Python

Ruby

Java

Nginx

AWS Traffic Mirroring

GCP Traffic Mirroring

Azure API Management

Docker Compose

Kubernetes

Linkerd

AWS Fargate

Burp Suite Extension

Writing a Test

Advanced Tests

Test Templates

Test Rules

Global Test Environment

Making a Testing Config

Generating Auth Tests

Overview

Custom Templates

Typescript Templates

Example Templates

Metlo Config

Webhooks

Uploading Open API Specs

Installing Metlo's CLI

Deploy

Debugging

Adding email connectivity to Self hosted Metlo for notifications and password resets

Argument	Flag	Description
Host	-h, —host	The host to run the tests for
Verbose	-v, —verbose	Print detailed test errors
Envfile	—envfile <string>	Path for your env file
Env	—env <key>=<value>	Environment variables

Introduction

Inventory

Protection

Connections

Testing

Settings

CLI

Self Hosted

Contribute

Simulate an Attack