availability

Package: Invicti AppSec Core (on-demand)

Default scan profiles

Scan profiles are collections of predefined security checks used to test your web application for vulnerabilities. When launching a scan, you choose a scan profile to run against a target. Invicti AppSec Core provides a set of default scan profiles designed to meet common application security needs. You can use these defaults or create custom scan profiles tailored to your specific requirements. You can run multiple scans on the same target using different scan profiles.

This document describes the built-in scan profiles available in Invicti AppSec Core.

Why this matters

Choosing the right scan profile determines which vulnerabilities Invicti AppSec checks for during each scan. Starting with a built-in profile saves time and ensures you're testing against established standards like OWASP Top 10 or PCI DSS. You can always clone a default profile to customize it if your requirements don't quite match any of the built-in options.

Built-in scan profiles

Default scan profiles are predefined groupings of tests designed to identify specific classes of vulnerabilities, such as SQL injection or Cross-site scripting (XSS). These profiles help streamline scanning by narrowing or expanding the scope of checks depending on your goals. You can use these profiles to focus on specific risks or perform comprehensive assessments.

Scan profile actions

Built-in scan profiles support the following actions:

View - Click the eye icon to view the profile's security checks. Each check displays the highest severity it can report. Use the Severity filter to narrow the list to checks at a specific severity level.
Clone - Click the clone icon to create a custom scan profile based on the built-in profile. This opens the custom profile creation dialog with all checks from the built-in profile pre-selected, allowing you to modify them as needed.

For more information on creating custom profiles, refer to the Custom scan profiles document.

Full scan

Performs a comprehensive scan using all available checks in Invicti AppSec. This profile offers the widest vulnerability coverage.

Critical / High risk

Scans only for the most severe vulnerabilities, including SQL injection, Cross-site scripting (XSS), and file inclusion. Invicti AppSec dynamically updates this profile with each release to include the latest high-impact checks.

Critical / High / Medium risk

Extends the Critical / High risk profile by also checking for medium-risk issues, such as server misconfigurations and common coding flaws. Invicti AppSec also dynamically updates this profile.

Cross-site scripting (XSS)

Focuses exclusively on detecting XSS vulnerabilities. Invicti AppSec updates this profile regularly to include the latest relevant tests.

SQL injection

Focuses only on detecting SQL injection vulnerabilities. Invicti AppSec dynamically updates this profile to reflect the latest threat signatures.

Weak passwords

Identifies login forms and attempts to exploit them using known weak credentials to detect authentication vulnerabilities.

Crawl only

Performs a crawl of the target site to map its structure without running any vulnerability checks.

OWASP top 10 API security risks 2023

Scans for the top 10 most critical API risks to web applications, as defined by the OWASP Top 10 API project.

OWASP top 10 security risks 2025

Scans for the top 10 most critical security risks to web applications, as defined by the OWASP Top 10 project.

PCI DSS 4.0 checks

Identifies vulnerabilities that would cause non-compliance with Payment Card Industry data security standards (PCI DSS).

CWE/SANS top 25

Scans for the 25 most dangerous software errors, based on the Common Weakness Enumeration (CWE) list curated by the SANS Institute.

LLM security

Specialized profile for testing Large Language Model (LLM) powered applications including AI chatbots, virtual assistants, and other AI-enabled systems. Tests for prompt injection, system prompt leakage, LLM command injection, and other AI-specific vulnerabilities. For detailed information, see LLM-based app vulnerability testing.

Troubleshooting

You can't find a profile that matches your compliance requirement

The built-in profiles cover the most common standards (OWASP Top 10, PCI DSS, CWE/SANS). If none of them match your exact requirement, clone the closest built-in profile and adjust the included checks to align with your standard. Refer to the Custom scan profiles document for instructions.

The Full scan profile takes too long to complete

The Full scan profile runs all available checks and is the most thorough - but also the slowest. If scan time is a concern, use a targeted profile such as Critical / High risk or a compliance-specific profile instead. You can also run multiple targeted scans in parallel on the same target.

A profile returns too many false positives

Built-in profiles can't be edited directly. Clone the profile that produces false positives, then remove or adjust the specific checks causing them. Use the View action on the built-in profile to identify which checks are included before cloning.

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?

Why this matters​

Built-in scan profiles​

Scan profile actions​

Full scan​

Critical / High risk​

Critical / High / Medium risk​

Cross-site scripting (XSS)​

SQL injection​

Weak passwords​

Crawl only​

OWASP top 10 API security risks 2023​

OWASP top 10 security risks 2025​

PCI DSS 4.0 checks​

CWE/SANS top 25​

LLM security​

Troubleshooting​

Need help?​