Home
Getting started
This section provides a short tour of basic product features and procedures, including using the wizard to set up a scan.
Tutorial
This simple tutorial goes through the steps of configuring a simple application scan using the Scan Configuration wizard, running the scan, and reviewing the results.
Step 1: Configuring the scan

Getting started
This section provides a short tour of basic product features and procedures, including using the wizard to set up a scan.
- Overview
- What's new
  This section describes new AppScan Standard product features and enhancements in this release, as well as deprecations and anticipated changes, where relevant.
- System requirements
  A summary of the minimum hardware and software required for the machine that runs AppScan Standard.
- Installing
  The installation wizard guides you through the fast and simple process.
- License
  This section describes for the trial and paid versions of AppScan Standard.
- How an automatic scan works
  This topic explains the difference between the "stages" and "phases" of a scan.
- Web application vs. web API
  This topic explains the different methods available for exploring sites, before AppScan tests them.
- Basic workflow
  A diagram showing a simple AppScan workflow using the scan configuration wizard.
- Home screen
  Describes the options available from the home screen that opens when you load AppScan.
- Tour of the main screens
  Describes the components of the AppScan main screen (Issues view), and all menus and toolbars.
- Tutorial
  This simple tutorial goes through the steps of configuring a simple application scan using the Scan Configuration wizard, running the scan, and reviewing the results.
- Sample files
  The sample files can help give you a feel for using AppScan and what scan results look like.

Step 1: Configuring the scan

About this task

The Scan Configuration Wizard provides an easy way to configure a scan, when you do not need to change many of the default configuration settings.

Procedure

On the home screen click Web applications or, click File > New > Web application scan.

Configuration opens, with the Web essentials preset selected.
Starting URL and domains: Enter the URL of your application.

AppScan attempts to connect to the server, and the green Connected to server messages appears when this succeeds.
Click Login management.

Login Management view opens, with the Recorded radio button selected.
Click Record, and select the AppScan Chromium browser.

The browser opens to the starting URL that you defined in the previous step. Your browsing is now being recorded by AppScan.
Log into your application with an authorized username and password.
When you have successfully logged-in, close the browser.

The "Login Sequence" (the sequence of links that achieved the logged-in state) is displayed (see Record login with a browser for more details), and the gray icon turns green, indicating that in-session detection is active.
Click Test policy and optimization.

Test Policy view opens, with the Default policy selected and optimization set to Fast.
Click Start full scan.

Note: Although it is possible to start the automatic scan at this stage, in many cases a better result will be achieved by manually exploring the application first, as a regular user would (see Using a browser).