- Knowledge Base
- Getting Started
- Web Application Scanning
-
Security Announcements
-
Product News
-
Next-Gen Vulnerability Management
-
Getting Started
-
General
-
Operating Status
-
System & Network Scanning
-
Web Application Scanning
-
Cloud Scanning (CSPM)
-
API Scanning
-
Phishing & Awareness Training
-
Scanner Appliance
-
Device Agent
-
On-premise platform deployment
-
Asset Management
-
Vulnerability Manager
-
Reports
-
Digest Reports
-
Organizer
-
Continuous Monitoring
-
Integrations
-
Platform API
-
Remediation
-
Users
-
PCI DSS
-
Terms & Conditions
-
Dashboard
How do I get started with scanning a web application?
To set up a web application scanning, go through these steps.
1. Install a Scanner Appliance
A Scanner Appliance is used for scanning within your local networks, behind your firewall. If you wish to scan publicly available web apps, you normally use our external/cloud scanners. If you're only scanning publicly available web apps, you can skip this step.
Install a Scanner Appliance for local scanning:
https://support.holmsecurity.com/knowledge/how-do-i-install-a-scanner-appliance-1
2. Create a web app asset
Create assets for each web app that you want to scan:
https://support.holmsecurity.com/knowledge/how-do-i-create-a-web-application
3. Create a scan profile
Create a web application scan profile with settings for how to scan the web app:
https://support.holmsecurity.com/knowledge/how-do-i-create-a-web-application-scan-profile
4. Schedule or run only once
Schedule a scan based on the profile, or run a scan once. You must do this for each web application you want to scan.
https://support.holmsecurity.com/knowledge/how-do-i-schedule-a-scan-for-an-web-app