Scanning techniques – Holm Security

What are the general requirements and practices for scanning large networks?
How do I enable potential vulnerabilities?
How do I enable active exploitation for network scans?
How do I configure the scan profile to speed up the scan?
How do I improve the accuracy when scanning web servers?
How do I review configuration used for a scan?
How does "Include all hosts in IP range belonging to tag" work?
What type of devices can be disrupted by scans?
How do I run a scan with potentially dangerous test?
What is potentially dangerous test?
How do I include or exclude a specific vulnerability in a scan?
How do low probability tests work and how can I turn them off?
What services does the network scanner try to brute force?
What type of devices are scanned?
What are the general basics for how a network scan is performed?