Get Started in 5 Minutes

This guide walks you through installing Rorix, authenticating, and running your first vulnerability scan on a .NET project.

1. Install the CLI

Rorix is distributed as a .NET global tool. Install it with:

dotnet tool install -g Rorix.Cli

Verify the installation:

rorix --version

2. Get Your API Key

1. Sign in to the Rorix dashboard
2. Navigate to Settings then API Keys
3. Click Create API Key and give it a descriptive name
4. Copy the key — it starts with rxk_

Store your API key securely. It will only be shown once.

3. Authenticate

rorix login rxk_your_api_key_here

This saves your credentials locally so subsequent commands are authenticated automatically.

4. Run Your First Scan

Navigate to your .NET project directory and run:

rorix scan

Rorix auto-detects project files including .csproj, .sln, packages.config, Directory.Packages.props, and global.json.

5. Review Results

After the scan completes, you will see a summary table:

 Package                    Version   Vulnerabilities   Severity   License
 ─────────────────────────  ────────  ────────────────  ─────────  ──────────
 Newtonsoft.Json             12.0.3   1                 High       MIT
 System.Text.Json            6.0.0    0                 —          MIT
 Microsoft.Data.SqlClient    4.1.0    2                 Critical   MIT
 log4net                     2.0.12   1                 Medium     Apache-2.0

 Grade: C | Score: 62/100 | 4 vulnerabilities found

The scan uploads your dependency manifest to Rorix for analysis. No source code is ever transmitted.

Next Steps

• Generate an SBOM for compliance reporting
• Configure policies to enforce security baselines
• Set up GitHub Actions for automated CI scanning
• Explore the CLI reference for all available commands