About the DAST Essentials scanners

DAST Essentials supports the following scanning methods for running the available scanners.

Quick scan

Runs only non-invasive tests on live production versions of your code.

Full scan

note

Veracode is deprecating Full scan as part of a transition to DAST Essentials Enterprise Mode to improve performance. Existing targets can still run Full Scan, but new targets will use Quick Scan or Enterprise Mode instead.

Runs all DAST Essentials scanners. Only recommended for test or developer systems, as security scanners can decrease performance or impact live data for productive systems. Several factors can increase the scan time, such as the scanners you run, network performance, the number of web pages or API endpoints, the amount of content on each page, and the target configuration. These scans can impact the performance of your live web application or API. To ensure that these resources run optimally, consider running a full scan in a staged environment.

You can change the selected scanners on the Configure target page. If the URL is protected by HTTP basic authentication using a .htaccess file, on the Configure target page, you must add your username and password to the System Authentication section on the Authentication tab.