Skip to main content
availability

Package: Invicti AppSec Core (on-demand), Invicti AppSec Enterprise (on-premise, on-demand)

Compare scan results

You can compare two completed scans side by side to analyze differences in vulnerabilities, severity counts, and other findings. This helps you track security improvements over time or compare results across different scanners or branches.

Select scans to compare

  1. Select Scans from the left-side menu.
  2. Click the Completed tab.
  3. Select exactly two scans using the checkboxes on the left side of the table.
  4. Click the Compare button that appears above the table.

The comparison view opens in the Comparison tab.

tip

You can also compare scans from the project-level Scans tab under a specific project.

Comparison view

The comparison view displays the two scans side by side, each with its own column.

Scan header

Each scan column shows the following header information:

  • Project name: the project associated with the scan.
  • Scan date: the date and time the scan was completed.
  • Branch: the branch that was scanned.
  • Tool: the scanner used.
  • ALM: the linked repository tool and path (if configured).
  • Issue tracker: the linked issue tracking tool and URL (if configured).
  • Severity breakdown: clickable counts for Critical, High, Medium, and Low findings.

Vulnerability table

Each scan column displays a table of vulnerabilities with the following columns:

ColumnDescription
CWE IDThe Common Weakness Enumeration identifier for the vulnerability.
Vulnerability nameThe name of the vulnerability.
File pathThe file path where the vulnerability was found.
SeverityThe severity level of the vulnerability.
DetailsClick to open the vulnerability detail view.

Each scan has its own independent pagination, so you can navigate through the results of each scan separately.

Filter the comparison

You can filter the vulnerabilities in each scan column independently:

  • Click a severity count (Critical, High, Medium, or Low) in the scan header to filter the vulnerability list for that scan by severity.
  • Click Clear to remove applied filters for a scan.

Restrictions

  • You must select exactly two scans to compare.
  • Only completed scans can be compared. You can't compare queued or failed scans.
  • Both scans must be of the same type (both AppSec or both Infrastructure).

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Last updated on
Was this page useful?