Getting Started

Navigation in Invicti

This document is for:
Invicti Standard, Invicti Enterprise On-Premises, Invicti Enterprise On-Demand

We want to help you get oriented quickly. Each topic explains the main menus and areas in the window.

Invicti Enterprise

This table lists and explains the menus in Invicti Enterprise.

DiscoveryFrom this menu, you can display and manage all the websites that Invicti has discovered. You can also filter and configure the discovered website lists, as well as create and exclude websites. For further information, see Application and Service Discovery Service.
WebsitesFrom this menu, you can view the Dashboards for an overview of the security state of all your web applications. You can also add, import, and manage websites or add and manage website Groups. For further information, see Introduction to the Dashboards.
ScansFrom this menu, you can add and manage new Scans and Group Scans, view Scan Profiles or view and manage Recent Scans. For further information, see Overview of Scanning.
SchedulingFrom this menu, you can schedule individual Scans and Group Scans, and display all your scheduled Scans. For further information, see Scheduling Scans in Invicti Enterprise.
ReportingFrom this menu, you can set reporting details, and view chart reports. For further information, see Chart Reports.
IssuesFrom this menu, you can view all your Issues, those that are addressed, those that are waiting for a retest, and those still to be addressed. For further information, see Viewing Issues in Invicti Enterprise.
TechnologiesFrom this menu, you can view Recent Technologies discovered in scans, including a Dashboard overview. You can also disable notifications and view reports.  For further information, see Technologies.
PoliciesFrom this menu, you can create, clone and optimize new Scan Policies, and create Report Policies.
NotificationsFrom this menu, you can create new Notifications, edit, clone, and delete Notifications, simulate Notification events, and prioritize Notification scopes. For further information, see Managing Notifications.
IntegrationsFrom this menu, you can select a system to integrate with Invicti, create a new Integration, match usernames between systems, and clone, edit, or delete User Mappings. For further information, see What Systems Does Invicti Integrate With?
TeamFrom this menu, you can add new Team Members, send invitations to others to join, set their roles, and place them into a team. For further information, see Managing Members in Invicti Enterprise.
ActivityFrom this menu, you can view the activity logs of Users. For further information, see Activity Logs.
AgentsFrom this menu, you can configure and disable New Agents, and edit and delete New Agent Groups. For further information, see Agents in Invicti Enterprise On-Premises and Internal Agents in Invicti Enterprise.
SettingsFrom this menu, you can check general Settings options, configure Single Sign-On details, and enable IP Address Restrictions. The following additional settings are available in the Invicti Enterprise On-Premises edition only: Security, Database, Email, SMS, Service Credentials, Cloud Provider, Authentication Verifier, and Licensing. For further information, see Overview of Settings in Invicti Enterprise.
Sign OutClick here to sign out of Invicti Enterprise.

Your Name

This table lists and explains the [Your Name] dropdown options in Invicti Enterprise.

User SettingsClick to open the Change User Settings window, which contains information about your user details. For further information, see Managing Your Account Settings and Password.
Account SettingsClick to open General Settings, which contains information about your account details. For further information, see General Settings.
Change PasswordClick to open the Change Password window, from which you can change your login password. For further information, see Managing Your Account Settings and Password.
API SettingsClick to open the API Settings window, which contains your Current Password to view your User ID, and view or reset your API Token. For further information, see API Settings.
Two-factor AuthenticationThis displays the Configure Two-factor Authentication window, which contains information about the Status of and Options for enabling two-factor authentication on your account.For further information, see Two-Factor Authentication.
LicenseClick to open the Account License window, which contains information about your license settings and limits. For further information, see License.
What’s NewClick to display the What’s New panel. Check the option ‘Notify me about updates’.This setting is enabled by default. For more information, see What’s New.
Sign OutClick here to sign out of Invicti Enterprise

Invicti Standard

We want to help you get oriented quickly. Each topic explains the main menus and areas in the window.

Quick Access Toolbar

Customize the Quick Access Toolbar for access to tasks you use frequently. Its default position is above the Ribbon.

This table lists and explains the icons on the Quick Access Toolbar.

NewClick to Start a New Scan (see How to Scan a Website in Invicti Standard). Alternatively, press CTRL+N on the keyboard.
ImportClick to Import an Invicti Session File. Alternatively, press CTRL+O on the keyboard.
ExportClick to Export your current Invicti scan as an Invicti Sessions (NSS) file. Alternatively, press CTRL+S on the keyboard.
Drop-down ArrowClick to show or hide the above options in the Quick Access Toolbar.

The Ribbon

The Ribbon is displayed at the top of the window.

This table lists and explains the tabs on the ribbon in Invicti Standard.

FileFrom this tab, you can import Local Scans saved on your PC, or import a scan file from a disc (or another device) or from Invicti Enterprise. You can also export Scans to a file on your PC or Invicti Enterprise elsewhere. You can also find out information About Invicti, and Exit Invicti Standard.
HomeFrom this tab, you can perform all the main Invicti Standard functions: Start Scan – Start a New scan, Schedule a scan, start an Incremental scan, Schedule Incremental scans, or open a New Instance of Invicti Standard in another window for multiple scans
Post Scan – Rest All scans, or launch an Invicti Hawk
Scan SessionImport to Invicti Standard, Export from Invicti Standard, or Export To Invicti Enterprise from Invicti Standard
Tools – Use the Scan Policy Editor and Report Policy Editor, or access further Options
ViewFrom this tab you can display or hide the panels in the window for scans: 
Activity (default panel)
HTTP Request / Response 
Knowledge Base Viewer 
Attack Radar 
Execute SQL Commands
Get Shell 
Exploit LFI 
Exploit Short Names 
Controlled Scan 
Send To Task
Logs (default panel)
Sitemap (default panel)
Issues (default panel)
Knowledge Base (default panel)
Progress (default panel)
Request Builder 
Reset Layout – Resets current layout to the default one
For further information about each of these panels, see Panels in the Scan Summary Dashboard.
ReportingFrom this tab, you can download different types of reports in various formats: 
WAF Rules
For further information, see Report Templates and Lists.
HelpFrom this tab, you can access Invicti’s technical help:

Help links to our Support page
Extensibility, Reporting, Custom Scripting and Form Authentication APIs
Support allows you to submit a support request

Check Updates lets you know if a new version or update is available
Check for VDB Update or lets you know if a new vulnerability database has been released
Subscriptions lets you manage your subscription
What’s New lets you displays and hide the popup
LinkFrom this tab, you can view further scanning options for scans already conducted.

Run Controlled Scans
Select Send to Request Builder to create or modify imported HTTP requests, send them to the target, and analyze the HTTP responses sent back
Go to Identification Page

Copy URL or Copy as cURL

Open in Browser
VulnerabilityFrom this tab, once you click on an Issue, the Tools and Send To options are displayed. 

Retest a single vulnerability
Generate Exploit for CSRF and XSS vulnerabilities
Execute SQL Commands to run manual SQL queries to verify vulnerabilities
Get Shell to run commands on a shell on the target application
Exploit LFI to read the contents of files on the target machine
Exploit Short Names to define path to be exploited and display results
Ignore from this Scan to ignore selected vulnerabilities

Send To – Configure Send To Actions

WAF Rules – Configure Web Application Firewalls
SearchClick to display a search box and enter the name of a tab on the ribbon or a panel in the dashboard in Invicti Standard. When the name of the item is found, click to open.

The Right-click Context Menu

When you right-click an item on the Sitemap or Issues panels, a context menu is displayed that provides a shortcut to several functions on the Ribbon.

Invicti Standard Right-Click Image

The Panels

For further information, see Panels in the Scan Summary Dashboard.

You can search and filter in various places in Invicti Standard. This feature provides a centralized and quick search for anything in the current scan, including among requests, responses and vulnerabilities.

You can conduct a scan search during a scan, or once it has been completed.

How to Conduct a Scan Search in Invicti Standard

  1. Open Invicti Standard.
  2. With a scan running or completed, open the search dialog by pressing CTRL + K. The search dialog is displayed overlaying the scan action beneath.
  1. Enter the word or phrase on which you want to search (in this example, ‘frame’).
    • If the word or phrase is in the scan, results are displayed immediately in filtered categories
  • If the word or phrase does not occur in the scan, the box turns red.
  1. Double-click on any search result to display its details in the relevant panel.
  2. Click ESC to close the search dialog.

Invicti Help Center

Our Support team is ready to provide you with technical help.

Go to Help Center This will redirect you to the ticketing system.