Test Optimization
Test Optimization uses intelligent test filtering to run faster DAST scans.
A full regular scan typically sends thousands of tests and may take hours, in some cases
days, to complete. During the early stages of development, as part of your DevOps cycle, or for a
quick overall evaluation of the current security posture of your product, you can use Test
Optimization to get the results you need in a shorter time frame.
Our intelligent test filters are based on statistical analysis, and filter out certain tests – or even specific test variants – to produce a shorter scan that identifies the more common, severe and otherwise important vulnerabilities only. Test Optimization is activated by default, and can greatly reduce overall scan time when fast results are more important to you than a thorough, in-depth scan. Later in the development cycle, or at specific intervals, you may decide to use the Normal (full) scan for a more complete security picture.
Test Optimization is configured in DAST scan setup.
| Option | Description |
|---|---|
| Normal | Performs in-depth testing, sending all tests that are appropriate for the site as configured. This setting is recommended when a longer scan will not interrupt your development workflow. |
| Optimized (default) | Speeds up the scan by sending only tests for the more common, severe and otherwise significant vulnerabilities. This setting is recommended during development, as part of your DevOps cycle, and whenever a faster, overall picture is needed. |