Improve application scanning efficiency with IBM Security AppScan

22 July 2014
PDF (112 KB)
 
Photo of Ori Pomerantz

Ori Pomerantz

Technical Enablement Specialist

 

Content management systems (CMS) often use a parameter to distinguish between different pages of the same type. For example, in WordPress, the URL http://localhost/wordpress/?p=4 can refer to one blog post and http://localhost/wordpress/?p=6 to another. However, the pages are created by the same code and are different only in displayed text. That text is not relevant to scanning the application for vulnerabilities anyway. In this security community white paper, "Parameter Exclusions in IBM Security AppScan Standard," you learn how to restrict AppScan so it only scans such pages once, rather than once per entry.

READ:Read the white paper

Parameter Exclusions in IBM Security AppScan Standard


RELATED TOPICS:Visit the security on developerWorks communitySubscribe to the security on developerWorks newsletterFollow security on developerWorks on Twitter

Add a comment

Note: HTML elements are not supported within comments.


1000 characters left

developerWorks: Sign in

Required fields are indicated with an asterisk (*).


Need an IBM ID?
Forgot your IBM ID?


Forgot your password?
Change your password

By clicking Submit, you agree to the developerWorks terms of use.

 


The first time you sign into developerWorks, a profile is created for you. Information in your profile (your name, country/region, and company name) is displayed to the public and will accompany any content you post, unless you opt to hide your company name. You may update your IBM account at any time.

All information submitted is secure.

Choose your display name



The first time you sign in to developerWorks, a profile is created for you, so you need to choose a display name. Your display name accompanies the content you post on developerWorks.

Please choose a display name between 3-31 characters. Your display name must be unique in the developerWorks community and should not be your email address for privacy reasons.

Required fields are indicated with an asterisk (*).

(Must be between 3 – 31 characters.)

By clicking Submit, you agree to the developerWorks terms of use.

 


All information submitted is secure.

static.content.url=http://www.ibm.com/developerworks/js/artrating/
SITE_ID=1
Zone=Security
ArticleID=978231
ArticleTitle=Improve application scanning efficiency with IBM Security AppScan
publish-date=07222014