Support
Scans

BREACH Attack

This document is for:
Invicti Standard, Invicti Enterprise On-Premises, Invicti Enterprise On-Demand

BREACH stands for ‘Browser Reconnaissance & Exfiltration via Adaptive Compression of Hypertext’. BREACH is a group of vulnerabilities of the same type, rather than a specific instance that impacts a particular piece of software. BREACH Attack detection is a security check that checks multiple criteria. BREACH Attack detection checks protected connections in which attackers can still view the victim’s encrypted traffic.

There are no additional settings available for the BREACH Attack Detection.

The BREACH Attack Security Check is enabled by default.

For further information, see Scan Policy Fields and Security Checks.

How to Disable the BREACH Attack Security Check in Invicti Enterprise

  1. Log in to Invicti Enterprise.
  2. From the main menu, click Policies, then New Scan Policy.

New Scan Policy Screen

  1. Click the Security Checks tab.

Security Checks Screen

  1. Deselect the BREACH Attack checkbox.

Breach Attack Deselection Screen

  1. Click Save.

How to Disable the BREACH Attack Security Check in Invicti Standard

  1. Open Invicti Standard.
  2. From the Home tab, click the Scan Policy Editor. The Scan Policy Editor dialog is displayed.

Invicti Standard Breach Attack Deselection Window

  1. Deselect the BREACH Attack checkbox.
  2. Click OK.

Invicti Help Center

Our Support team is ready to provide you with technical help.

Go to Help Center This will redirect you to the ticketing system.