Scans

How to create and run different types of scans and how to optimize scan settings, profiles, and scopes.

• Introduction to Scanning
  • Web Application Security Scanning Flow
    • Knowing Your Web Application
    • Preparing and Configuring Scans
    • Scanning Your Web Applications
    • Reviewing and Comparing Scan Results with Previous Scans
    • Fixing Issues
    • Retesting Fixed Issues
    • Generating Reports
  • Scanning Production Environments
    • Garbage Records and Accidental Data Loss
    • Email Floods
    • Server Slowdown or Downtime
    • Overloading the Server With Requests
  • Stages of Scanning
    • Stage 1: Crawling
    • Stage 2: Attacking
    • Stage 3 and 4: Recrawling and Late Confirmation
  • Overview of Scanning
    • Types of Scans
• Launching Scans
  • Creating a New Scan
    • How to scan a website in Invicti Enterprise
    • How to run an Incremental Scan in Invicti Enterprise
    • Invicti Standard New Scan Fields
    • How to scan a website in Invicti Standard
  • Scheduling Scans
  • Setting up incremental scans
  • PCI DSS Scanning
• Working with Scans
  • Recent Scans
    • Recent Scans Columns
    • Viewing Recent Scans in Invicti Enterprise
    • Filtering scans
    • Viewing Recent Scans in Invicti Standard
  • Managing scans
  • Manual Crawling in Proxy Mode
    • How to Run a Manual Crawl with Invicti Standard
    • How to Combine Automated and Manual Crawling in a Web Security Scan
    • Using Selenium for Manual Crawling
  • Excluding Parts of a Website From a Scan
  • Excluding and Including Links from the Sitemap After Crawling
    • Excluding a URL or Parameter from a Web Security Scan
    • Include Resources Back in the Scan (Reversing the Exclusion)
  • Configuring Additional Websites
    • The Scan Profile and Settings Used for the Additional Websites
    • Reporting Scan Activity and Issues Identified in Additional Websites
  • Scanning Applications in an IP Range
  • Configuring URL Rewrite Rules
  • Pre-Request Scripts
    • Writing a Pre-Request Script
    • Testing Pre-Request Scripts
    • Scanning with Pre-Request Script in Invicti Enterprise On-Demand
    • Saving Pre-Request Scripts into the Invicti Directory
    • Writing Pre-Request Scripts
    • Use Cases and Presets
    • Debugging Pre-Request Scripts Using Helper Functions
    • Verifying Pre-Request Scripts
  • Using business logic recorder
    • Using the business logic recorder in Invicti Enterprise
  • Scan Time Window
  • Importing and Exporting Scan Sessions in Invicti Standard
    • How to Import a Scan Session into Invicti Standard from Invicti Enterprise
    • How to Import a Scan Session to Invicti Standard from Your Local Machine
    • How to Export the Current Scan Session from Invicti Standard to Your Local Machine
    • How to Export the Current Scan Session from Invicti Standard to Invicti Enterprise
    • How to Bulk Export Selected Scans from Invicti Standard to Invicti Enterprise
  • Reviewing Scan Results and Imported Vulnerabilities
    • Vulnerability Families
    • Sending Vulnerabilities Manually to an Issue Tracking System
    • Tracking and Logs of Issues Sent to Issue Tracking System
  • Scan Groups in Invicti Enterprise
    • How Invicti creates a scan group
  • Performance Analysis in Invicti
    • Is Your Website Public?
    • Most Common Reasons for Performance Issues
• Scanning APIs
  • Overview of Scanning APIs
  • Scanning gRPC API Web Services with Invicti Enterprise
  • Scanning gRPC API Web Services with Invicti Standard
  • Scanning SOAP API Web Services
    • Scanning a SOAP API web service for vulnerabilities
    • Automating the discovery of SOAP APIs during crawling
  • Scanning a RESTful API Web Service
    • Differences Between a Web Service and a REST API
    • The Challenges of Scanning REST API Interfaces
    • Scanning a RESTful API Web Service for Vulnerabilities
    • Importing the Definition Files Manually
  • Scanning a GraphQL API for vulnerabilities
    • Key concepts in GraphQL
    • Scanning a GraphQL API for vulnerabilities
  • Importing links and API definitions
  • Importing links from supported tools
• Scan Profiles
  • Overview of Scan Profiles
    • Configuring Scan Profiles in Invicti Enterprise
    • Filtering scan profiles
    • Configuring Scan Profiles in Invicti Standard
• Security Checks
  • Security Checks
  • WAF Identifier
    • How to Disable the WAF Identifier Security Check in Invicti Enterprise
    • How to Disable the WAF Identifier Security Check in Invicti Standard
  • GraphQL Library Detection
  • Identifying MongoDB injection vulnerabilities
  • BREACH Attack
    • How to Disable the BREACH Attack Security Check in Invicti Enterprise
    • How to Disable the BREACH Attack Security Check in Invicti Standard
  • Forced Browsing
  • Login Page Identifier
  • Malware Analyzer
    • How to Configure the Malware Analyzer in Invicti Enterprise
  • Custom Scripts for Security Checks in Invicti Enterprise
    • Executing a custom script on a web page
    • Scanning a website with a custom security script
  • Custom Scripts for Security Checks
    • Deciding Which Vulnerability Type Will be Detected
    • Identifying a Sample Vulnerable Web Page
  • Custom Security Checks via Scripting
    • Active Security Checks
    • Passive Security Checks
    • Singular Security Checks
    • Per-Directory Security Checks
    • Helper Functions
    • How can I add Custom Fields to a Vulnerability?
  • Identifying sensitive data
  • How Invicti reports vulnerabilities
    • Apache Struts RCE
    • Code Evaluation
    • Command Injection (CI)
    • Cross Site Scripting (XSS)
    • File Inclusion
    • Header Injection
    • NoSQL Injection
    • Server-Side Request Forgery (SSRF)
    • SQL Injection
    • Static Resources
    • XML External Entity (XXE)
    • Arbitrary Files (IAST)
    • BREACH Attack
    • Configuration Analyzer (IAST)
    • Content Security Policy
    • Content-Type Sniffing
    • Cookie
    • Cross Frame Options Security
    • Cross-Origin Resource Sharing (CORS)
    • Cross-Site Request Forgery
    • Drupal Remote Code Execution
    • Expression Language Injection
    • File Upload
    • GraphQL Library Detection
    • Header Analyzer
    • Heartbleed
    • HSTS
    • HTML Content
    • HTTP Methods
    • HTTP Status
    • HTTP.sys (CVE-2015-1635)
    • IFrame Security
    • Insecure JSONP Endpoint
    • Insecure Reflected Content
    • JavaScript Libraries
    • JSON Web Token
    • Login Page Identifier
    • Malware Analyzer
    • Mixed Content
    • Open Redirection
    • Oracle WebLogic Remote Code Execution
    • Referrer Policy
    • Reflected File Download
    • Signatures
    • Software Composition Analysis (SCA)
    • SSL
    • Unicode Transformation (Best-Fit Mapping)
    • WAF Identifier
    • Web App Fingerprint
    • Web Cache Deception
    • WebDAV
    • Windows Short Filename
• HTTP Request Builder
  • HTTP Request Builder
    • Working with HTTP Requests and the Request Builder
    • HTTP Headers and Parameters
    • Optional: Add a Request Body in the HTTP Request
• Command Line Interface
  • Command Line Interface
• Authentication
  • Overview of Authentication
    • Supported Authentication Methods in Invicti
  • Configuring and Verifying Form Authentication in Invicti Enterprise
  • Configuring Form Authentication in Invicti Standard
    • Configuring a Login Form URL
    • Configuring Multiple Sets of Credentials and URLs
    • Configuring Form Authentication Using an OTP
    • Configuring Form Authentication Using an OTP from a QR Code
    • Problems with Form Authentication Login
  • Verifying the Form Authentication Configuration in Invicti Standard
    • How to Verify the Form Authentication Configuration by Simulating the Login and Detecting the Logout Pattern
  • Form Authentication API
    • Methods
  • Custom Scripts for Form Authentication
    • Custom Script Editor
    • Executing Scripts on Multiple Pages
    • Form Authentication Troubleshooting, Tips and Tricks
  • Authentication Profiles
    • Configuring Authentication Profile in Invicti Enterprise
    • Configuring Authentication Profile in Invicti Standard
  • Configuring Basic, Digest, NTLM/Kerberos and Negotiate Authentication
    • Basic, Digest, NTLM/Kerberos and Negotiate Authentication Fields
  • Configuring Client Certificate Authentication
  • Configuring OAuth2 Authentication
    • OAuth2 Authentication Fields
  • Configuring Header Authentication
  • Configuring Smart Card Authentication in Invicti Standard
    • Smart Card Authentication Fields
  • HMAC Authentication via Scripting in Invicti Standard
    • Sample Postman Pre-Request Script
    • How to configure HMAC Authentication via Scripting in Invicti Standard
  • Manual Authentication
  • Logout Problems
    • Causes of Logout During Scanning
    • How Does Logout Detection Work?
  • Logout Detection
    • Configuring Redirect-Based Logout Detection
    • Configuring Keyword-Based Logout Detection
    • Configuring Authentication for Non-Supported Login Forms
  • Interactive Logins in Invicti Standard
    • How to Configure CAPTCHA, One-Time Tokens, and Two-factor Authentication Mechanisms
• Working with Scan Scopes
  • Scan Scope
  • Excluding file types from a scan
    • Excluding Binary Files
    • Crawl and Attack Options
• Scan Agents
• Authentication Verifier Agents
• Overview of Scanning APIs
  • Overview of Scanning APIs
• SOAP API Web Services
  • Scanning SOAP API Web Services
    • Scanning a SOAP API web service for vulnerabilities
    • Automating the discovery of SOAP APIs during crawling
• RESTful API Web Service
  • Scanning a RESTful API Web Service
    • Differences Between a Web Service and a REST API
    • The Challenges of Scanning REST API Interfaces
    • Scanning a RESTful API Web Service for Vulnerabilities
    • Importing the Definition Files Manually
• GraphQL
  • Scanning a GraphQL API for vulnerabilities
    • Key concepts in GraphQL
    • Scanning a GraphQL API for vulnerabilities
• Importing links and API
  • Importing links and API definitions
  • Importing links from supported tools