Skip to main content

Discovery scans for web applications

Discovery scans analyze your web application perimeter and perform focused searches for web applications within a defined IP address range or list of known hosts. In the Veracode Platform, the Discovery scan results provide a detailed list of all discovered applications. This list of applications can help you determine which applications to include in your Dynamic Analysis scans.

Veracode designed Discovery and Dynamic Analysis to run as part of a regular monitoring program. Discovery identifies relevant information, including protocol and port usage, deployed software, misconfigured DNS servers, and unique site fingerprints. Dynamic Analysis uses this information to quickly assess the security of the application perimeter. Dynamic Analysis scans hundreds of applications simultaneously to provide rapid risk assessment.

When you configure a Discovery scan, you can select which teams and Security Leads have access to the scan results.