SnitchNet Documentation
Complete documentation for SnitchNet security monitoring platform
Introduction
SnitchNet is a comprehensive B2B SaaS platform for Cyber Asset Monitoring and Threat Intelligence. Monitor your domains, discover vulnerabilities, track data breaches, and protect your brand from phishing attempts.
What is SnitchNet?
SnitchNet provides automated security scanning and monitoring for your domains through six core scan types:
Core Features
- DNS Monitoring: Track and analyze all DNS records for your domains
- TLS Certificate Management: Monitor SSL/TLS certificates with expiration alerts
- Port Scanning: Discover open ports, services, and CVE vulnerabilities across all your infrastructure
- Similar Domain Detection: Find typosquatting and phishing attempts targeting your brand
- Breach Detection: Check if your domains appear in public data breaches
- Email Security: Validate SPF, DKIM, and DMARC configurations
Platform Features
- Multi-Organization Support: Manage multiple organizations with role-based access control
- Scheduled Scans: Automate security monitoring with recurring scans (Small/Full plans)
- Comprehensive Reports: Export detailed reports in PDF, CSV, or JSON formats
- Audit Logs: Complete activity tracking for ISO 27001 and NIS2 compliance
- Real-time Collaboration: Team features powered by Liveblocks
- Dashboard Analytics: Visualize security posture with interactive charts
Technology Stack
Frontend & Backend
- Framework: Next.js 15 with App Router
- Database: PostgreSQL (NeonSQL) with Prisma ORM
- Authentication: Better Auth (SSO, 2FA, Passkeys)
- Payments: Stripe subscriptions with 14-day trial
- Storage: Cloudflare R2 for screenshots and reports
- Real-time: Liveblocks for collaboration
Security Features
- Role-Based Access: Owner, Admin, Member, Viewer permissions
- Multi-Factor Auth: TOTP-based 2FA with backup codes
- WebAuthn: Passkey support for passwordless login
- Audit Trail: Complete activity logging for compliance
- Rate Limiting: Subscription-based scan limits
Quick Start
1. Create Account
Sign up with email/password, Google, or Microsoft OAuth.
2. Create Organization
Set up your organization and invite team members.
3. Add Domain
Add your domain and verify ownership via DNS TXT record.
4. Run First Scan
Start with a DNS scan to discover your infrastructure.
5. Analyze Results
View results on dashboard, export reports, and set up scheduled scans.
Architecture
Multi-Tenant System
- Organizations: User-created with independent data isolation
- Domains: Multiple domains per organization (based on subscription)
- Users: Team members with granular permissions
Async Job Processing
- Laravel Queue System: Long-running scans execute asynchronously
- Webhook Callbacks: Results posted back to Next.js
- Status Tracking: Real-time progress updates
Data Flow
- User triggers scan from dashboard
- Next.js sends request to Laravel API
- Laravel queues job for processing
- Job executes (calls external APIs, performs scans)
- Results stored in database via webhook
- Dashboard updates automatically
- User receives notification
Subscription Plans
Homelab Plan
- 1 domain
- 1 scan per month (per type)
- Manual scans only
- View scan results
Small Plan (€4.99/month)
- Up to 10 domains
- Unlimited scans
- Scheduled scans
- Report exports (PDF/CSV/JSON)
- 14-day free trial
Full Plan (€19.99/month)
- Unlimited domains
- Unlimited scans
- Scheduled scans
- Report exports
- Priority support
- Feature requests
- 14-day free trial
Getting Help
- Documentation: Browse guides and API references
- Community: Join our community forum (coming soon)
- Email Support: Available for Small and Full plan users
- Priority Support: Dedicated support for Full plan users
Compliance
SnitchNet helps you maintain compliance with:
- ISO 27001: Complete audit trail of all security activities
- NIS2: User action tracking and security monitoring
- GDPR: Data privacy and user consent management