Scan configuration
After creation, each target can be further configured to apply customized scan settings. Those settings determine how Invicti Platform analyzes your targets.
For more information on editing targets, refer to the Edit target document. |
This document provides an overview of the target's scan configuration options.
Scan configuration options
Scan profile
Scan profiles are collections of security checks used to test your web applications and websites for vulnerabilities. For more information on scan profiles, refer to the following documents: default scan profiles and custom scan profiles.
Scan speed
Being able to scan a website or web application quickly is certainly important, but a fast scan isn’t always the desired outcome. There are cases where you might be scanning a web application on a web server with very limited resources or a web application with aggressive rate-limiting. Whatever the reason, configuring a scan to run at a slower speed (throttling) is sometimes necessary.
You can choose the following options for the configuration of your scan speed:
- Sequential - 1 concurrent request, no throttling.
- Slow - 2 concurrent requests, sending requests every 50ms.
- Moderate - 5 concurrent requests, sending requests every 20ms.
- Fast - 10 concurrent requests, no throttling.
API Specifications
You can add additional paths to your target configuration by uploading or linking API specification files. For more information on adding API specifications, refer to the Add paths document.
Imported files
You can add additional paths to your target by uploading session and supported project files. For more information on adding those files, refer to the Add paths document.