AppScan Standard is a DAST (Dynamic Application Security Testing) tool designed for security experts and pen-testers that automatically crawls target applications and APIs and tests them for vulnerabilities. Any efficient DAST scan starts with a good scan configuration, but in the past, this has been a challenging task for some users.
That all changes, now! The release of AppScan Standard 10.2.0 – with its new configuration UI – improves workflows for both basic and advanced tasks, enables you to find what you need faster, and helps you better understand how different configurations affect your scan.
Here is a quick look at the new UI and capabilities in AppScan Standard 10.2.0:
Embedded view
The configuration now acts as another view in the application, with more visibility into all the content. It is easily accessible through the navigation and gives you the flexibility to switch between data, issues, and the configuration view. Now, when you update a configuration, you can check details in the data or issues views and return exactly to what you did in the configuration.
View mode during scan
The embedded view also allows you to view the configuration details that are affecting a scan, while the scan is running. You can simply click on the configuration view at any time without needing to pause the scan.
Configuration presets
Whether you are a beginner or an advanced user, we have the right preset for you. Presets contain a filtered view of the configuration items according to your need. Just select the preset you would like to work with directly from the home screen and easily switch between presets, if needed. Besides the full configuration, we have two quick presets: Web essentials and API essentials. These options will allow you to configure web application or API scans in just a few steps. (Hint: stay tuned for more interesting presets in the future!)
Find things faster
We have reorganized the configuration items by more intuitive groupings to make it easier and faster to find what you are looking for. You can also use the search box to find specific items, even items that are not in the specific preset you are using.
API scanning configuration
All API capabilities will now be a part of the scan configuration, whether it is using a postman collection, graphQL scheme, or OpenAPI description file. Even more automatic API abilities will be coming soon.
Let us know what you think
With the help of our customers, we are finding opportunities to innovate and improve dynamic analysis. The AppScan team is consistently sharing early designs and ideas and getting great feedback from our design partners.
We would love to have you on board to share your thoughts and feedback. There are a few ways you can make an impact:
- Become our Design partner and provide feedback on early designs and new developments before launching to the market.
- Send any new ideas, feedback or requests through the feedback button in the product
Visit AppScan for more information on HCL AppScan Standard or start your free trial today.