Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

Regarding scan options in the tool

Gangambika | Last updated: May 17, 2021 03:11PM UTC

Hi I am new to Burp suite . I had a query regarding the scan options provided in the tool I see that there are options like 'New live task' and 'New scan' . 1 . What is the importance of live scan ? How different it is from the 'scan' option . 2 . Does live scan continues until we actually stop capturing the requests ? 3 . What is active scan ? How different it is from 'scan' (I see that there are more issues detected from 'active scan' than from the 'scan') Thanks Gangambika

Michelle, PortSwigger Agent | Last updated: May 18, 2021 10:29AM UTC

To help get you started with scanning in Burp you might find these links and videos useful, they discuss creating scan tasks and using the live tasks: https://portswigger.net/burp/documentation/desktop/scanning https://portswigger.net/burp/documentation/desktop/scanning/live-scans The 'New Scan task' option can be used to automate the crawl and audit of a site, the scanner will navigate around the application, following links, submitting forms, and logging in where necessary to map the application and then audit it. The live scan can be used to perform some scanning operations on requests and responses that are processed by Burp's tools. Live scan tasks will continue as long as Burp tools are capturing requests that match the scope of the live scan task. When you choose the 'Active scan' option from the right-click menu, Burp will not automatically crawl the link to find additional links and locations, it will perform an audit-only scan and will test for all issue types. You can read about the different issue types in this article: https://portswigger.net/burp/documentation/scanner/auditing I hope this helps, please let us know if you have any further questions.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.