When you start a new web application scan, you choose one application that is defined in your account. The web crawler crawls the web application under a single host name or IP address as defined in the web application settings. The web application can consist of a single physical host or multiple identical hosts behind a single load-balanced IP address.
A few things to consider... |
Web application scanning is available in your account only when the Web Application Scanning (WAS) module is enabled for your subscription. The WAS module may be enabled for a trial period. If you would like to enable this feature, please contact Technical Support. |
Be sure that there are web applications in your account. Learn more |
Depending on your network, it may be necessary to add the service's scanner IPs to your list of trusted IPs, so the service can send probes to hosts and web applications on your network. Learn more |
I'm ready to start my scan. What are the steps? |
It's simple to start your scan. Go to Web Applications > New Scan, and tell us: 1) the target web application to scan, 2) the authentication record to use (optional), 3) the form submission method, 4) maximum links to crawl, and 5) the bandwidth option to use. There are some additional advanced options. |
I started my scan. What's next? |
You'll know the scan is done when the scan status shows "Finished". You'll also receive a Scan Summary email notification. Use the link in the email to log back in to the PCI Merchant application to view the full scan results. |