Introduction

Automated Rescanning is a feature integrated into your vulnerability management dashboard that allows you to instantly verify whether the fixes you have deployed have resolved detected security issues,. Unlike manual rescans, these are performed by Astra's automated scanner, providing fast and reliable feedback without waiting for a manual review.

Prerequisites

• Bot-Reported Issues Only: Automated rescans can only revalidate vulnerabilities discovered by the automated scanner; pentester-reported issues require a manual rescan,.

• Vulnerability Status: Only vulnerabilities in Unsolved or Under Review status are eligible for selection.

• One Active Rescan at a Time: A specific vulnerability can only be included in one active rescan (automated or manual) at a time.

Instructions

1. Review Detected Vulnerabilities

After running an initial automated scan, go to the vulnerabilities list in your dashboard. Identify and select the issues for which you have already deployed fixes.

2. Initiate Bulk Rescanning

Once you select the vulnerabilities, a popup will appear at the bottom of the screen showing the total count. Click the Rescan button. A slide-out panel will open for you to review the selected items before confirming the request.

3. Rescan a Specific Vulnerability Directly

Alternatively, navigate to the details page of a single vulnerability. If it is eligible, you will find a Rescan option available to verify the fix for that specific item immediately.

4. Monitor Progress

You can track the real-time status of your rescans in the Progress Section of the Audit Details page. Automated rescans start instantly and typically finish quickly depending on the number of vulnerabilities being tested.

Expected Outcome

The system performs a focused verification to check if your fixes were effective. Upon completion, the rescan will be marked as Passed, Failed, or Cancelled in the progress section. If passed, the security findings will be updated to reflect your improved security posture.

Troubleshooting & Rules

• Concurrency: You can have multiple automated rescans running at the same time; having one active does not block you from starting another for different vulnerabilities.

• Status Restrictions: You cannot manually change a vulnerability's status while it is part of an active automated rescan.

• No Expiration: There is no fixed validity period for automated rescans; you can trigger them at any time as needed, unlike manual rescans which must be requested within a 30-day window,.

• Manual Rescan Conflict: If you move a bot-reported vulnerability from an active manual rescan to an automated one, it will be marked as Skipped in the manual rescan, and the pentesters will no longer validate it,.