Baseline (Passive) Web App Scanning

3min

The --scanMode=baseline option loads a ruleset that is tuned for performing quick non-attack based scans that can be run in a CI/CD environment against web applications.
Relatively quick to run (usually a few minutes, but depends on the size of the site).
Run in a CI/CD system.
Checks for common misconfigurations, but does not perform attacks against the site.
Running a scan
To run a baseline scan all you need is the URL of the site to scan and the DAST CLI will do the rest, including crawling the site to find additional pages and resources to test.
docker run -it soosio/dast --clientId=<soos_client_id> --apiKey="<soos_apikey>" --projectName="<project_name>" --scanMode=baseline https://url-to-test
Further Configurations
﻿Running Authenticated DAST Scans﻿ 
﻿Excluding DAST Scan Rules﻿ 
﻿Adjusting Scan Times﻿ 
﻿Excluding URLs From Being Scanned﻿ 
﻿

DAST Scan Modes

Full (Active) Web App Scanning