This article will teach you how to control and personalize the scanner's speed.
Please remember that the crawler is a limiting factor for most scans, especially if scanning complex applications. As we try to get to every corner of your application, it works very thoroughly, which means sometimes it might take longer.
The good news is that we provide you with several opportunities to increase the speed of the scanner:
- You can increase the throttle limit from 200 requests per second to a load your server can handle. This is especially helpful when scanning API and MPA scan target types. Please also ensure you add the Crashtest Security IPs to the whitelist of your firewall.
- A second way of increasing the speed of the scans is to reduce the scope of the scan. You can use the "Denied URLs" feature to black-list certain areas of your web application that might cause the crawler to run for a long time (e.g., forums, sites with a lot of clickable elements)
- The third option works well in combination with number 2. While having an auto-duplication in the scanner, it might be helpful to group certain areas & URLs of your web application together. This is especially important for extensive web applications with similar pages (e.g., Online shops). The Grouped URLs can be configured in the scan target preferences.