Skip to content

Logins
Support
Feature request
- Request access to feature request portal
- Feature request portal
Education & training
- Certification Programs
- Success Programs
Operational status
Security updates
Product news

Logins
Support
Feature request
- Request access to feature request portal
- Feature request portal
Education & training
- Certification Programs
- Success Programs
Operational status
Security updates
Product news

How can we help you?

There are no suggestions because the search field is empty.

Knowledge base
Web Application Security

Security updates
- General
Product news
- Release notes
Getting started
General
Operational status
- Holm Security VMP
System & Network Security
Web Application Security
Cloud Security
API Security
- General
Phishing Simulation & Awareness Training
- General
- Statistics
- Whitelisting
- Azure AD
- Templates
- Data privacy
- Tags
Attack Surface Management
- External Attack Surface Management
Scanner Appliance
Device Agent
On-prem platform deployment
Asset management
- General
- Assets
- Tags
- Views
- Unified assets
Vulnerability Manager
Reports
Organizer
- General
- White-labeling
Event Monitoring
- Monitoring profiles
Integrations
- Slack
- Webhooks
- Jira
- Microsoft
- TopDesk
- ServiceNow
- Splunk
- IBM
- General
- Beyond Trust
Platform API
- Getting started
- General
Remediation
- Tickets
- Policies
- Views
- Integrations
Users
PCI DSS ASV scans
- General
Partner Portal
Terms & conditions
Dashboard

Web Application Security

Proficiently detect extensive web application vulnerabilities, including OWASP Top 10.

General

How do I add a web asset?
How do I use the sitemap to run faster web assessments?
How does a web assessment work?
How do I find the sitemap from a web assessment?
How do I exclude one or more URLs from a web assessment?
What do the different settings for crawl scope mean?
How do I blacklist file types for web assessments?
How do I make sure I assess all relevant web applications?
How do I create a custom rule to exclude URLs for a web assessment?
How do I enable JavaScript scanning for a web asset?
How does a web assessment detect vulnerable JavaScript libraries?
How do I scan multiple domains in one web assessment?

OWASP

What is the OWASP Top 10?
What is the difference between the OWASP Top 10 versions 2013 and 2017?

Catalog

How do I add hosts to the web catalog?
How do I create a web asset from the web catalog?

Scan profiles

What is a path traversal vulnerability?
What are the settings in a web assessment profile?
What are advanced vulnerability plugins?
Which web assessment profiles are available?
How do I exclude a form method in a web assessment?
How do I create a web assessment profile?
How do I find custom sensitive content in a web assessment?

Troubleshooting

Why might a web application crash during an web assessment?
How do I optimize a web assessment reaching the 24-hour limit?
How can I speed up a web assessment?
How do I configure my firewall or WAF for external assessments?
How do I prevent form spam during web assessments?
How do I whitelist Holm Security in Akeeba Admin Tools Pro for Joomla?

Authenticated scanning

How do I blacklist CSS selectors?
Which authentication methods does the web assessment support?
How do I check whether an authenticated web assessment was successful?
How do I record a login sequence using the Chromium Web Recorder plugin?
How do I add a Sleep action in the Chromium Web Recorder plugin?
How do I run an authenticated web assessment using basic HTTP authentication?
How do I set up an authenticated web assessment?
What is HTML Form authentication for web assessments?
What is HTML Dynamic Form authentication for web assessments?
How do I use header injections in a web assessment?
How do I set up header injections for a web assessment?

Schedules

How do I schedule a web assessment?
How do I schedule assessments for multiple web assets?

www.holmsecurity.com

Copyright © 2025, Holm Security