Support
Introduction to Scanning

Overview of Scanning

This document is for:
Invicti Standard, Invicti Enterprise On-Premises, Invicti Enterprise On-Demand

In Invicti, you can do the following:

  • Launch Scans
  • Launch Group Scans (Invicti Enterprise only)
  • View the status of all scans, including Scans that are In Progress
  • Schedule Scans
  • View Recent Scans (and Reports), including the Scan Policy that was used

Types of Scans

This table lists and explains the various types of scans available in Invicti.

Field Description
Full Scans Full Scans (the default ones) scan every area of your website.

For further information, see Creating a New Scan.

Scheduled Scans Scheduled Scans are Full or Incremental Scans that do not take place immediately but at a set time in the future, and possibly on a recurring basis. You can schedule individual or group scans.

For further information, see Scheduling Scans.

Group Scans Group scans are scans that are run for those Website Groups that have been created in Invicti Enterprise.

For further information, see Scanning Websites Simultaneously in Invicti Enterprise, see How to Run a Group Scan in Invicti Enterprise, and How to Create a Scheduled Group Scan in Invicti Enterprise.

Incremental Scans

Incremental Scans begin over already completed Full Scans, but they only attack newly introduced and amended pages since the initial scan. Neither running nor cancelled scans can be used as a base for an Incremental Scan; the initial scan must first be completed.

For further information, see How to Run an Incremental Scan in Invicti Enterprise and How to Run an Incremental Scan in Invicti Standard.

Retests

Retests scan the discovered vulnerabilities, not the entire website.

For further information, see How to Run a Retest in Invicti Enterprise and How to Run a Retest in Invicti Standard.

Controlled Scans Controlled scans provide an attack method that can be used to scan a link with selected parameters and engines. It is useful when crawling a web application or imported links. It acts as an alternative to type-and-go scanning, since it allows Invicti to work as a proxy and attack links in a controlled way.

You can run Controlled Scans in Invicti Standard only.

For further information, see How to Run a Controlled Scan in Invicti Standard.