Skip to main content

Modify scan settings

You can configure additional scan configuration settings. Scan parameters let you fine-tune and adjust the scan scope based on your requirements.

Before you begin:

  • You must have a Veracode account with the Project Admin role for EASM.

To complete this task:

  1. Sign in to the Veracode Platform.
  2. Select Scans and Analysis > EASM.
  3. Select the Scan icon start_scan_easm.png.
  4. Select the Parameters tab. You can adjust the scan settings by selecting options in the following categories:

    • Deep Discovery: control how extensively the scan expands beyond the original items. You can enable passive discovery of related domains and IP addresses. Available settings:

      • Enable Google Analytics
      • Enable Redirect To
      • Enable Reverse Whois on Company
      • Enable Reverse Whois on Domain
      • Enable Artificial Intelligence
      • Enable IP Range Finding
      • Enable Other Countries
      • Enable Certificate DB Check

    • Discovery: specify how certificates, WHOIS records, and DNS data are used during asset identification. You can also include or exclude external service lookups. These settings apply to both Static and Deep Discovery scans. Available settings:

      • Enable Subdomain Finder
      • White Listed IP Locations
      • HTTP Ports
      • HTTPS Ports
      • Enable Port Scanning
      • Port Scanning Black Listed Ips
      • Enable Responsive IP Search

    • Crawling: control how web crawling is handled, including depth, timeouts, and limits. These settings are useful for applications and URLs with complex structures. They apply to both Static and Deep Discovery scans. Available settings:

      • Max Number of Pages
      • Enable Number of Pages Per Application
      • Find Application From Certificates
      • Enable Sitemap Check
      • Enable Fast http Port Checking
      • Page Timeout
      • Render Delay
      • Time To Render
      • Max Concurrent Crawling
note

Adjust scan settings carefully. These settings affect the scope and duration of the scan. Use Deep Discovery options with caution to avoid identifying assets that don’t belong to your organization.

  1. To reset the scan settings to their default values, select RESET TO DEFAULT at the bottom of the page.

You can find a detailed explanation for each setting below.

  • Blacklisting Feature: excludes findings that match specific regular expressions (regex patterns). You can also use this feature in reverse mode.

  • Enable Artificial Intelligence: uses AI techniques, such as image recognition, to improve trust level accuracy on discovered domains. (Default value: True)

  • Enable Certificate DB Check: checks external certificate data sources to discover additional domains. (Default value: True)

  • Enable Google Analytics: uses reverse techniques on Google Analytics digital IDs. (Default value: True)

  • Enable IP Range Finding: discovers IP ranges based on trusted company names. Requires at least one entry in the work queue. (Default value: True)

  • Enable Other Countries: allows discovery of domains with any top-level domain (TLD). If disabled, only TLDs already present in the work queue are used. (Default value: True)

  • Enable Redirect To: detects URLs that redirect to discovered domains with a trust level of 100%. (Default value: True)

  • Enable Reverse Whois on Company: finds domains using reverse WHOIS lookups based on company name. (Default value: True)

  • Enable Reverse Whois on Domain: finds domains using reverse WHOIS lookups where a domain’s email address was used for registration.

  • Enable Port Scanning: scans all discovered IP addresses for open ports. (Default value: False)

  • Enable Responsive IP Search: identifies applications that respond to HTTP or HTTPS requests by IP address instead of by FQDN. (Default value: True)

  • Enable Subdomain Finder: discovers all subdomains related to identified domains.

  • HTTP Ports: specifies HTTP ports for web application discovery. You can add additional ports to find hidden interfaces. (Default value: 80,8080)

  • HTTPS Ports: specifies HTTPS ports for web application discovery. You can add additional ports to find hidden interfaces. (Default value: 443,8443)

  • Port Scanning Black Listed Ips: excludes specified IP addresses from port scanning. (Default value: none)

  • Enable Fast http Port checking: enables port scanning to check for web applications. Disabling this option prevents potential blocking by firewalls but slows down scanning. (Default value: True)

  • Max Number of Pages: sets the maximum number of pages the scanner can crawl. Applies to the entire project if Enable Number of Pages Per Application is disabled. (Default value: 60)

  • Enable Number of Pages Per Application: applies the "Max Number of Pages" setting to each application individually instead of to the entire project. (Default value: True)

  • Enable Sitemap Check: attempts to locate and crawl sitemap files to discover more URLs. (Default value: True)

  • Find Application From Certificates: discovers new applications from certificate data found in known applications, using Subject Alternative Name (SAN) attributes. (Default value: True)

  • Max Concurrent Crawling: sets the number of web pages crawled in parallel. Lower values reduce the risk of being blacklisted or blocked. (Default value: 20)

  • Page Timeout: sets the timeout duration for HTTP connections, in seconds. (Default value: 10)

  • Render Delay: adds a delay (in seconds) after a page loads to allow full content retrieval, especially for slower applications. (Default value: 5)

  • Time To Render: sets the maximum time (in seconds) the scanner waits for a page to fully load in render mode. (Default value: 60).

Last updated on