Active scanning attempts to find potential vulnerabilities by using known attacks against the selected targets.
Active scanning is an attack on those targets.
You should NOT use it on web applications that you do not own.
It should be noted that active scanning can only find certain types of vulnerabilities.
Logical vulnerabilities, such as broken access control, will not be found by
any active or automated vulnerability scanning.
Manual penetration testing should always be performed in addition to active
scanning to find all types of vulnerabilities.
Active scanning is configured using the Options Active Scan screen.
Aktivni Sken tab | ||
Sajtovi taba | 'Attack/Active Scan site' right click menu item | |
Sajtovi taba | 'Attack/Active Scan node' right click menu item | |
Historija tab | 'Scan this History' right click menu item |
UI Pregled | za pregled korisničkog interfejsa | |
Karakteristike | obezbeđuje ZAP | |
Passive scanning | ||
Scan Policy Dialog | which allows you to specify which rules are used | |
Skener Pravila | supported by default |