SUPPORT

24/5 Hotline Support Service

+44 (0)20 3588 3841

Open a Support Ticket

support@netsparker.com

Overview of Scan Profiles

As you launch web application security scans in Netsparker, you can configure the scan settings manually. But, since many scans are necessary, it would be inefficient to manually configure the same settings each time. Scan Profiles enable you to save scan settings for future scans. Scan Profiles can be reconfigured at any time.

These are the scan settings you can add to a Scan Profile:

  • Target URL
  • Scan Policy
  • Report Policy
  • Custom Cookies
  • Crawling Information
  • Scan Scope and Excluded URLs
  • Additional Websites
  • Imported Links
  • URL Rewrite
  • Form Authentication
  • Basic, NTLM/Kerberos Authentication
  • Client Certificate
  • Header Authentication
  • Scan Time Window
  • Notifications
Scan Profiles apply only to single website scans. They cannot be used for group or multiple website scans.

Configuring Scan Profiles in Netsparker Enterprise

In Netsparker Enterprise, configuring scan profiles is achieved through fields that are mostly the same for all scan types – full or incremental, single or group, immediate or scheduled.

How to Create a Scan Profile from Scan Settings

  1. Log in to Netsparker Enterprise.
  2. From the main menu, click Scans, then New Scan.
  3. Configure the scan settings as explained in Creating a New Scan.
  4. From the dropdown next to the Target URL field, click the gears icon ().

  1. Click Save. The Save Scan Profile dialog is displayed.

  1. In the Name field, enter a name.
  2. Enable Primary if you want to set the Scan Profile as the default for the specified website.
  3. Enable Shared if you want to share the Scan Profile with your team.
  4. Click Save As New Profile.

How to Use a Scan Profile in a Scan

  1. Log in to Netsparker Enterprise.
  2. From the main menu, click Scans, then New Scan.
  3. From the dropdown to the left of the gears icon, select the relevant Scan Profile.

  1. Click Launch.

How to Edit a Scan Profile

  1. Log in to Netsparker Enterprise.
  2. From the main menu, click Scans, then New Scan.
  3. From the dropdown to the left of the gears icon, select the relevant Scan Profile.
  4. Configure the scan settings as required.
  5. Click the gears icon () and select Save.

  1. The Save Scan Profile dialog is displayed.
  2. Complete the fields as explained in How to Create a Scan Profile from Scan Settings.

  1. Click Update. (Alternatively, click Save As New Profile.)

How to Delete a Scan Profile

  1. Log in to Netsparker Enterprise.
  2. From the main menu, click Scans, then New Scan.
  3. From the dropdown to the left of the gears icon (), select the relevant Scan Profile.

  1. Click Delete. The Delete Scan Profile dialog is displayed.

  1. Click Delete.

Configuring Scan Profiles in Netsparker Standard

In Netsparker Standard, when you configure scan settings in the Start a New Website Scan dialog, the tab in which the changes are made is marked as bold and underlined for reference (e.g. General).

This is also useful when you load a Scan Profile. You can quickly see which tabs contain settings that have been modified.

For further information on each scan setting, see Netsparker Standard New Scan Fields and Netsparker Standard Scan Options Fields.

How to Create a New Scan Profile

  1. Open Netsparker Standard.
  2. From the ribbon, click Home, then New. The Start a New Website or New Service Scan dialog is displayed.
  3. Configure the scan settings as explained in Netsparker Standard New Scan Fields and Netsparker Standard Scan Options Fields.
  4. In the Target Website or Web Service URL panel, click Previous Settings.

  1. Click Save as New Profile. The Save Profile As dialog is displayed.

  1. In the Profile Name field, enter a name, and click Save.

How to Load a Saved Scan Profile

  1. Log in to Netsparker Standard.
  2. From the ribbon, click Home, then New. The Start a New Website or New Service Scan dialog is displayed.
  3. From the Target Website or Web Service URL panel, click Previous Settings.

  1. Select the Scan Profile you want to use.
  2. From the button dropdown, click the downward arrow, and click Start Scan.

How to Change the Scan Settings in a Scan Profile

  1. Log in to Netsparker Standard.
  2. From the ribbon, click Home, then New. The Start a New Website or New Service Scan dialog is displayed.
  3. In the Target Website or Web Service URL panel, click Previous Settings.

  1. Select the name of the Scan Profile you want to change.
  2. Configure the settings as required.
  3. From the Previous Settings dropdown, click Save Profile.

Default Scan Profiles in Netsparker Standard

The Netsparker Standard web security scanner has two built-in Scan Profiles, the Default and the Previous Settings.

  • The Default Scan Profile has the default configuration.
  • The Previous Settings built-in Scan Profile is used by the scanner to save the settings of the Scan Profile used in the previous scan. Even if you used a saved Scan Profile in a previous scan, its settings will be saved in the Previous Setting Scan Profile.

Managing Scan Profiles in Netsparker Standard

Netsparker Standard Scan Profiles are saved as XML files in the following location:

%USERPROFILE%\Documents\Netsparker\Profiles

From this location, you can delete or back up your Scan Profiles 

Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO