Deployment: Invicti Platform on-demand, Invicti Platform on-premises
Instant scan
Running scans is a crucial step in the security assessment process, allowing you to identify and address vulnerabilities within your web applications. There are multiple ways to start a scan. This document shows you how to launch a new scan using the New scan button.
This document describes how to create a new scan in Invicti Platform.
All scans must comply with the Authorized target scanning policy. Review this document before executing the scans.
Steps to start a new scan
After configuring your targets, you're ready to begin scanning.
- Select Scans from the left-side menu, then click New scan on the DAST scans page to open the scan settings.
- In the Scan target drop-down, use the checkboxes to select the target you want to scan.
- Select a Scan profile from the list of available default or custom profiles.
- Optionally, from the Report drop-down menu, select your preferred report type.
- Optionally, in the Tags field, add tags to label and organize the scan.
- Select Immediately in the How would you like to scan? field.
To schedule the scan for a later time, refer to the Future scan document.
- Confirm the scan configuration and start the scan by pressing Start scan.
The scan starts immediately. You can access the scan results by clicking on the relevant line on the list of scans on the All scans page. Refer to the Review scan results document for more information.
Alternative scan options
- Future scan - schedules a one-time scan for a specific date and time.
- Scheduled scan - sets up recurring scans through DAST scan schedules.
- Recurring scan - sets up automated recurring scans from the DAST scans page.
- Incremental scan - scans only newly discovered or modified pages.
- Scan dynamic URL target - triggers scans on ephemeral targets via API or CI/CD.
- PCI ASV scan - runs official PCI DSS compliance scans through Clone Systems.
Need help?
Invicti Support team is ready to provide you with technical help. Go to Help Center