Security & investigation,
built for decisive teams.

Evidence-led web assessment, blockchain forensics, and OSINT.
Self-serve tooling and private engagements when you need depth beyond the dashboard.

Get started Request booking →
Python· Diverg Open CLI· diverg-auto· GitHub Actions· GitLab CI· REST API· CLI· OpenClaw· JSON Output· Markdown Reports· Batch Scanning· XSS Detection· SQL Injection· SSRF· Path Traversal· Auth Bypass· Attack Paths· Python· Diverg Open CLI· diverg-auto· GitHub Actions· GitLab CI· REST API· CLI· OpenClaw· JSON Output· Markdown Reports· Batch Scanning· XSS Detection· SQL Injection· SSRF· Path Traversal· Auth Bypass· Attack Paths·

THE COMPLETE STACK

Security intelligence
from surface to chain.

Diverg is a security and investigation company. We combine web application assessment with blockchain forensics in one platform: passive review of headers, TLS, and policy, then controlled active testing and attack-path analysis with evidence you can act on. Built for engineering teams, investigators, and agents who need defensible results, not noise.

DIVERG OPEN

Detect vulnerabilities
before attackers do.

Goes beyond header checking. Diverg Open passively analyses your security posture then actively probes for real exploitable weaknesses, sending non-destructive test payloads and scoring findings with severity and evidence.

  • Reflected XSS, context-aware canary injection
  • SQL Injection, error-based and boolean-blind detection
  • SSRF, cloud metadata and internal network probing
  • Path Traversal, Open Redirect, Auth Bypass
Get started Learn more → 
$ diverg-scan https://target.com --type active

Passive scan complete, 8 findings
Running active probes...

[CRITICAL] Reflected XSS, /search?q=
[HIGH]    SQL Injection, /api/users?id=
[MEDIUM]  Open Redirect, /login?next=
──────────────────────────────────
Attack Paths:
  → XSS + weak session cookie
    = Session Hijack via XSS
  → SQLi + error disclosure
    = Database Compromise

Score: 23/100  Grade: F

ATTACK INTELLIGENCE

Connect the dots
between findings.

Individual findings tell half the story. Attack-path reasoning chains vulnerabilities into exploit narratives, showing how one weakness enables the next, with aggregated severity, likelihood, and prioritized remediation.

  • Session Hijack via XSS + weak cookies
  • Database Compromise via SQLi + error disclosure
  • SSRF to internal network pivot
  • Remediation priority ordered by exploitability
Get started Learn more →
CRITICAL Session Hijack via XSS
Reflected XSS
/search?q=, HTML body context
Weak Session Cookie
HttpOnly flag missing
Account Takeover
Steal session, impersonate user
Likelihood 0.82 Impact High

DIVERG CHAIN

Follow the money
across any network.

Multi-modal blockchain forensics across Ethereum, Bitcoin, and Solana. Real-time transaction analysis, entity clustering, fund flow tracing, and risk scoring, integrated into the same agent context as your web security data.

  • Transaction graph traversal and entity clustering
  • On-chain risk scoring and sanctions screening
  • Fund flow tracing across bridges and mixers
  • Natural language queries via OpenClaw
Get started Learn more →
Target Wallet
High Risk Exchange
Mixer Protocol
Unknown Wallet
Risk Score87/100
Hops Traced14
NetworksETH, SOL

AGENTS

Built for autonomous operation.

OpenClaw lets your agents issue natural-language security commands: scan this URL, check this wallet, report findings, without writing glue code.

Learn more →

CI / CD

Ship with confidence.

Drop a single step into GitHub Actions or GitLab CI. Set a minimum severity, and Diverg blocks risky deploys before they reach production, with machine-readable output for any pipeline.

See the docs →

OPEN SOURCE

MIT licensed. No black box.

Diverg Open is fully open source. Audit the probes, extend the attack-path rules, or self-host the whole stack. Community-first, forever.

View on GitHub →

GET STARTED

Ready to build?

Install the open-source scanner from GitHub or PyPI. PyPI details: Installation.

pip install git+https://github.com/fennq/diverg-auto.git

Docs →·[email protected]

Quick start guide Sign in to Diverg Open →