![Holm Security Yellow.png]](https://support.holmsecurity.com/hs-fs/hubfs/Holm%20Security%20logos/Holm%20Security%20Yellow.png?height=40&name=Holm%20Security%20Yellow.png){kind=small}
Web Application Security
Proficiently detect extensive web application vulnerabilities, including OWASP Top 10.
General
- How do I add a web application?
- How do web scans work?
- How do I find the sitemap of scanned applications?
- How do I exclude one or more URLs from being scanned?
- What does the different settings for crawl scope mean?
- How do I blacklist file types for web applications?
- How do I make sure I scan all relevant web applications?
- How do I create a web application from the catalog?
- How do I make a custom rule for exclusion of URLs for the web application scanner?
- How do I activate JavaScript support in the web scan engine?
- How does the support for finding vulnerabilities in JavaScript libraries work?
- How do I scan multiple domains in one web application?
OWASP
Catalog
Scan profiles
- Path Traversal vulnerability
- What does the scan profile settings mean?
- What are advanced vulnerability plugins?
- What web scan profiles are available?
- How do I exclude form methods in web application scans?
- How do I create a web application scan profile?
- How does custom content work in the web application profile?
Troubleshooting
- Why does an application crash during a scan?
- How do I optimize scans reaching the 24 hour limit?
- How can I speed up web app scans?
- What firewall settings are required when scanning using external (cloud) scanners?
- Why are my website forms spammed?
- How do I make exception in Admin Tools Pro for Joomla?
Authenticated scanning
- What authentication methods does the web application scanner support?
- How do I see if an authenticated web application scan was successful or not?
- How do I record a login sequence using the Chromium Web Recorder plugin?
- How do I run an authenticated web application scan using HTTP basic authentication?
- How do I run an authenticated web application scan?
- How do I run an authenticated web application scan using HTLM Form?
- How do I run an authenticated web application scan using HTLM Dynamic form?
- How do I use header injections in a web application scan?
- How do I setup header injections?