How much time does it take for a re-scan?

What This Article Covers

This article details the typical timeframe required for a manual re-scan (re-audit) after you have fixed vulnerabilities identified during a manual pentest. It also clarifies the validity period for requesting a manual re-scan and distinguishes it from automated rescans.

Who Should Read This

This article is for any user who has completed an initial manual pentest, has addressed the reported vulnerabilities, and is now ready to verify their fixes through a re-scan.

Why This Matters

Understanding the re-scan timeline and its associated validity period is crucial for efficient vulnerability management. It allows you to plan your remediation efforts effectively and ensures that you can verify your fixes within the designated timeframe, ultimately leading to a stronger and more compliant security posture.

Re-scan Timeframe

A manual re-scan (or re-audit) typically requires approximately half the time of the initial comprehensive manual pentest. The exact duration can vary based on the specific scope and complexity of the re-verification.

Generally, a manual re-scan usually takes anywhere from 3 to 9 working days to complete, depending on the current request queue and the number of vulnerabilities submitted for re-verification.

Rescan Period (Validity)

For manual rescans following a manual penetration test, you have a 30-day window from the date vulnerabilities are reported to request a re-scan.1

Important: After this 30-day period, the rescan request will expire and may require an additional purchase, depending on your subscription plan. If you anticipate needing more time, please learn how to get an extension for your rescan deadline.

Need help? Raise a support ticket anytime from your Astra dashboard.