Configuring Crawling Options

Screenshot 4  – Basic Crawling Options

Screenshot 4 – Basic Crawling Options

 From the General node in the Start a New Scan dialog you can configure the following crawling options:

  • Find and Follow New Links: This option is enabled by default and instructs Netsparker to parse every crawled page and extract all contained links.

  • Enable Crawl and Attack at the Same Time: This option is enabled by default and instructs Netsparker to start attacking the target while the crawling is still running. When disabled Netsparker will execute crawling and attacking sequentially, which might result in a prolonged scan. This also allows finding more links if the links are only visible after attacking a page.

  • Pause Scan After Crawling: This option is used to crawl the web application without attacking. Crawl Only mode will not identify issues requiring active attacking such as SQL Injection and Cross-site Scripting vulnerabilities.

More advanced crawling options can be configured from the Scan Policy. For more information on Scan Policies refer to page 2 of this manual.