Home
Issues
Issues view provides access to the results of a scan. You can view results at a high level or select specific tests or objects and access more details. These details include how to fix, requests/responses, and differences between the test variants that resulted in issues. You can manipulate the severity of issues, resend tests (with or without modifications), and create reports based on Issues.
Report false positive test results

Welcome
Welcome to the documentation for HCL AppScan Standard version 10.5.0
Getting started
This section provides a short tour of basic product features and procedures, including using the wizard to set up a scan.
Configuration
You configure a scan by choosing settings that best describe your application, and the kind of testing you want.
Manual exploring
Manual exploring enables you to explore specific parts of your application, filling in fields and forms as you go. This can be a way of ensuring that particular areas of the site are covered, and that AppScan has the information needed to complete forms correctly.
Scanning
Learn how to start a scan, and what happens during the scan; how to manually manipulate the Explore stage, and how to export the results of a scan.
Data
Data view is populated with information about the structure of the site during the Explore stage of the scan.
Issues
Issues view provides access to the results of a scan. You can view results at a high level or select specific tests or objects and access more details. These details include how to fix, requests/responses, and differences between the test variants that resulted in issues. You can manipulate the severity of issues, resend tests (with or without modifications), and create reports based on Issues.
Reports
This section describes how to generate reports from the scan results.
Tools
This section explains how to use additional tools provided with HCL AppScan Standard.
Integrations
This section describes integrations of other applications with AppScan Standard:
Best practices
This section contains some best practices and use cases for advanced users.
FAQ & Troubleshooting
CLI
This section describes the syntax and options available using the Command line interface.
References
Menus and toolbar summaries, and glossary

Report false positive test results

You can email test information to AppScan® Support in order to:

Report a result that AppScan classified as positive (indicating a vulnerability), but which you believe is negative (indicating no vulnerability).
Ask AppScan® Support why a result was classified as positive.

You can also use the feature to conveniently zip and email the result to the developers and auditors in your own organization.

To save the data in an encrypted format, accessible only to Support personnel:

Right-click the issue, select 'Report False positive.
In the Report False Positive dialog box, click Save File.
When saving the file, choose Appscan encrypted files (. Encrypted) under the Save as type option, ensuring it's an encrypted format. Alternatively, change the .zip in the filename to .encrypted.

To save the data in a decrypted format, to share within your own organization:

Right-click the issue, select 'Report False positive.
In the Report False Positive dialog box, click Save File.
When saving the file, choose Zip Files (.zip) under the Save as type option, ensuring it's a decrypted format.