Excluding Pages and Files with Specific Content Type from a Scan

By default Netsparker excludes a number of files from the scan based on their content type. For example fields such as PDF and compressed files do not need to be scanned during a web vulnerability scanning therefore Netsparker checks the Content-type HTTP header of the file and it if matches a header listed in this list it will ignore it.

You can also exclude files from a scan by content type.

You can also exclude a file or page from a scan based on its content-type header or remove any excluded content type from the exclusion from the Ignore these Content Types option in the Scope section when configuring a Scan Policy. 

Previous Page Next Page