Probely provides a variety of built-in scan profiles to choose from and define how your targets are scanned. Each of these built-in scan profiles is, in fact, a group of scanning conditions that are pre-configured by Probely to provide certain pre-defined scanning behaviors.
Probely also allows the customization of scan profiles if you need to adjust and fine-tune the scans for your targets.
Customize a Scan Profile
In the Probebly app, customize a scan profile as follows:
Open the dropdown menu on the top-right corner of the navigation bar and click on Scan Profiles.
On the Scan Profiles screen, you have three options to customize a scan profile:
Add - Click on the ADD CUSTOM PROFILE button to create a new custom scan profile starting from a blank configuration.
Clone - Click on the Clone button of a scan profile in the list to create a new custom scan profile based on an existing configuration and adjust it to your needs.
Edit - Click on the Edit button of a scan profile in the list to adjust its configuration. This option is unavailable for built-in scan profiles, which can only be cloned.
In the form that follows, configure the custom scan profile:
Type the name.
Type a description (optional).
Customize the scanning behavior:
Target type - Choose the type of target for which this scan profile is available: Web applications or standalone APIs.
Scan methods - Choose the type of HTTP methods to be used in scanning requests. It will allow the choice of an ideal set of methods for production targets.
Scan Speed - Choose the throughput of scanning requests regarding the target’s response time to avoid overloading the target with too many requests and optimizing the resources consumed by a scan.
Regardless of the scan speed, if Probely detects that the target is not able to handle the requests throughput during a scan, the scanner will automatically throttle down to attain the optimal performance.
Scanner Payloads - Choose the diversity of payloads and headers used for testing vulnerabilities to fine-tune the number of scanning requests made to each URL of the target.
Regardless of the scanner payloads, the vulnerabilities considered for testing are the same.
Vulnerabilities - Choose the vulnerabilities to be verified by the scanner: all or a specific subset.
Click on SAVE to finish the customization of the scan profile.
Once created, custom scan profiles are available in the list of profiles in the target settings. You only have to switch the scan profile of the target to the desired custom scan profile.
Finally, you can delete a custom scan profile by clicking the respective Delete button on the list of scan profiles, and Probely will prompt you to confirm your action. If one or more targets still use the profile to be deleted, Probely also indicates which will be the replacement scan profile to set in those targets.