DAST Unauthenticated Scan¶
AccuKnox Dynamic Application Security Testing (DAST) supports unauthenticated scans, which crawl and test publicly accessible pages without requiring login credentials. This is the simplest way to get started with DAST and is ideal for scanning APIs, marketing sites, or any endpoint that does not sit behind a login wall.
Authenticated scans
If your application requires login credentials to reach protected content, see DAST Authenticated Scan.
Configuration Steps¶
Step 1: Log in to the AccuKnox Platform.
Step 2: Navigate to Settings > Collectors.
Step 3: Click Add Collector.
Step 4: Click Web Application DAST Scan.
Step 5: Add the collector name and proceed to configure the following fields:
Target URL¶
Enter Target URL — Primary target URL to scan.
Scan Type¶
Scan Type — Select Baseline (quick scan) or Full (detailed scan).
See the difference between scan modes here: Baseline vs Full Scan
Authentication¶
Authentication — Select No Auth.
No login page, credentials, or session indicators are required. All authentication-related fields are skipped.
Include Path¶
Include Path (Optional) — Defines the specific URLs or URL patterns to include in the scan scope.
Example: https://example.com/app/
Exclude Path¶
Exclude Path (Optional) — URLs or URL patterns that should be excluded from the scan to avoid scanning specific pages or actions.
Example: https://example.com/scoreboard/
Label & Tags¶
Label — Create one using these steps: Create Labels
Tags (Optional) — Add any relevant tags.
Step 6: Enter your email address where you would like to receive scan notifications and press Enter.
Step 7: After submitting, the scan will be triggered. You can check the scan results on the same page.
Step 8: Once the Findings column is populated, click on it to be redirected to the findings page with all necessary details.
