Configuring the Scan Scope
The scope of a scan allows you to define which parts of the target web application should be crawled and scanned.
Screenshot 12 – Scan Scope Options in Netsparker Enterprise
The following scan scope options are available in the Scope drop down menu:
Entered Path and Below: During the scan the target path and any folder below the target path will be crawled and scanned. For example if you specify http://www.example.com all the pages and folders in the website will be crawled and scanned. If you specify https://example.com/testfolder/, all the pages and subfolders in the /testfolder/ will be crawled.
Only Entered URL: In this scan scope no links are followed, therefore ideal to scan all parameters on a single page.
When you specify http://example.com/test as a target URL http://example.com/testx will be crawled and scanned as well since in this scope Netsparker will also include all URLs that start with the given target URL.
Whole Domain: All of the pages and sub folders on the target domain will be scanned. If a specific URL is entered, such as http://example.com/testfolder/test.php, the scan will start from the specified URL but it will then proceed to crawl and scan all pages and sub folders on the domain http://example.com.