Go to website
Back
Articles on:
General Questions (Pentest)
Learn about the Pentest Product & Vulnerability Scanning
Validity of Vulnerability Assessment Report, Vetted Report & Pentest Report
Validity of Pentest Report, Vulnerability Scan Report & Vetted Report by Astra Pentest.
Few readers
What is the different between Automated Scan, Automated Vetted Scan & Manual Pentest?
When you click on 'Start a Scan' button on Scan page, you'll be given a choice to run three types of scans. We've described below what each of these types of scans mean: Automated Scan: Our ever evolving vulnerability scanner scans your application for vulnerabilities in this scan. You can choose to configure it to scan behind login too. Any possible vulnerability is repor
Few readers
How do you define a target for the vulnerability scanner?
A target is a domain or URL that will be tested by our vulnerability scanner. It can be the URL of a web application, website, API etc. Examples of some unique targets: https://app.example.com https://example.com/portal https://www.example.com What is the scope of the vulnerability scan? Target URL Let us say you set https://app.example.com/admin as the target URL. The scanner will
Few readers
What are the various support levels within Pentest Platform pricing?
The Scanner, Expert and Pentest plans come with different levels of support to help you ensure your applications are proactively secure. We've tried to make Astra's Pentest Platform massively self served, and are happy to help whenever you need us. Here's how the support coverage look like for each of the plans:
Few readers
What are false positives & how to work with them?
Vulnerability scanners are built to report every possible vulnerability or potential vulnerability in the application. If certain conditions within the application or server match a known vulnerability, the scanner reports the vulnerability within the dashboard along the description, request, response & steps to fix the vulnerability.
Few readers
How to extend the validity of Astra's Pentest Certificate?
After a successful Pentest, a publicly verifiable Pentest certificate is issued which looks like this. The validity of the certificate is 180 days. There are two ways validity of the certificate can be extended for another 180 days: Getting a Vetted scan: If you have been issued a Pentest certificate by Astra in the last 180 days, then you can request a [vetted scan](https://help.getastra.com/en/arti
Few readers
