Once the domain was successfully verified, you can trigger ArmourZero's Web Scan to scan and find weaknesses and vulnerabilities on the web application. Depending on your subscribed plan, you can trigger multiple scans at the same time. However the time to complete the scan depending on the size of web application.
ArmourZero's Web Scan support both normal and authenticated website. You must first add and verify your domain before scan is activated. Please refer to How to trigger Web Scan (authenticated website) for authenticated scan.
Normal website scan
1. Go to left menu and select "Web" under VULNERABILITY SCANNER section. All verified domains will be listed here.
2. Click on the three dots action icon on the domain you intend to scan.
3. Select Scan Now, the scan will start immediately.
or
1. Click on the "Scan Domain".
2. Select the verified domain that you intend to scan. Please read in details of the recommendation provided. If your domain have yet to verify, please visit how to add and verify domain.
4. Once you confirmed to scan the selected domain, accept the terms and conditions and click "Scan Domain".
Notes:
Depending on your plan, you can add more than 1 domain to scan at the same time.
ArmourZero's Web Scan will immediately scan and find weaknesses and vulnerabilities on the web application once you have triggered the scan. However the time to complete the scan depending on the size of web application. You can view the scanned results once the scan is completed.
As this scan is a penetration assessment tool, simulating real-time attack to find weaknesses and vulnerabilities, each scan have to trigger on-demand.