问HN:你们使用什么工具来监控网站安全(漏洞、正常运行时间等)?
我最近开发了 [PenZen](https://penzen.io)。它使用 OWASP Zap 在后台扫描网站的真实漏洞(不仅仅是 SSL 检查),并发送带有优先级的警报以及基于 AI 的修复建议。<p>我之所以制作这个工具,是因为我厌倦了那些只会提醒我一些我不理解或无能为力的问题的工具。请问:你们使用什么来监控网站安全?<p>更重要的是:是什么让你信任一份报告并采取行动呢?
查看原文
I recently built [PenZen](https://penzen.io). It scans websites for real vulnerabilities (not just SSL checks) using OWASP Zap under the hood and sends prioritized alerts with AI-powered remediation suggestions.<p>I made it because I was tired of tools that alert me about issues I don't understand or can’t do anything about. Curious: What are you using to monitor website security?<p>And more importantly: What actually makes you trust a report or take action on it?