> ## Documentation Index
> Fetch the complete documentation index at: https://docs.snapsec.co/llms.txt
> Use this file to discover all available pages before exploring further.

# Scans

> Execute and monitor domain scans to continuously discover, track, and manage your external attack surface.

## Overview

The **Scans** page enables security teams to **initiate, monitor, and manage discovery scans** across their external attack surface.

Each scan identifies assets such as subdomains, IPs, services, and exposures — providing a continuously updated view of your organization's internet-facing footprint.

<Frame caption="Scans dashboard showing scan history, status, and scheduling">
  <img src="https://mintcdn.com/snapsec-23724fa2/tJyZlToXvLSxZ6B2/images/asm/scans.png?fit=max&auto=format&n=tJyZlToXvLSxZ6B2&q=85&s=e472979cf65de3d0f501a156251fd7a4" alt="Scans Dashboard" width="1913" height="922" data-path="images/asm/scans.png" />
</Frame>

***

## Scan List

The scan list provides a **historical and real-time view** of all executed and scheduled scans.

### Key Capabilities

* View **scan status** (Upcoming, Completed, etc.)
* Track **execution time and duration**
* Monitor **scan frequency (weekly / one-time)**
* Identify **recent scan activity**

### Fields Explained

| Field         | Description                         |
| ------------- | ----------------------------------- |
| **Domain**    | Target domain scanned               |
| **Status**    | Current state of the scan           |
| **Started**   | When the scan started or will start |
| **Duration**  | Total scan execution time           |
| **Frequency** | Recurrence (Weekly / Once)          |

***

## Scan Status & Filtering

<Frame caption="Status filter for refining scan results">
  <img src="https://mintcdn.com/snapsec-23724fa2/tJyZlToXvLSxZ6B2/images/asm/scanss-status.png?fit=max&auto=format&n=tJyZlToXvLSxZ6B2&q=85&s=2737d3aba616347ff44ae696e1d7253d" alt="Scan Status Filter" width="1628" height="515" data-path="images/asm/scanss-status.png" />
</Frame>

You can filter scans based on their execution state:

* **Pending** — Scheduled but not started
* **Running** — Currently in progress
* **Completed** — Successfully finished
* **Failed** — Encountered an issue
* **Cancelled** — Manually stopped

This helps teams quickly focus on **active or problematic scans**.

***

## Launching a Scan

<Frame caption="Launch Scan button to initiate a new scan">
  <img src="https://mintcdn.com/snapsec-23724fa2/tJyZlToXvLSxZ6B2/images/asm/launch-scan-now.png?fit=max&auto=format&n=tJyZlToXvLSxZ6B2&q=85&s=9f6e5effe5821f0566a34da8605cf350" alt="Launch Scan" width="1623" height="582" data-path="images/asm/launch-scan-now.png" />
</Frame>

To start a new scan:

1. Click **“Launch Scan Now”**
2. Confirm the action in the prompt
3. The scan is scheduled and begins execution

***

## Confirmation Flow

<Frame caption="Confirmation modal before starting a new scan">
  <img src="https://mintcdn.com/snapsec-23724fa2/tJyZlToXvLSxZ6B2/images/asm/scans-confirmation.png?fit=max&auto=format&n=tJyZlToXvLSxZ6B2&q=85&s=5db700989de7b1228cc59d87f16dd1fd" alt="Scan Confirmation Modal" width="980" height="540" data-path="images/asm/scans-confirmation.png" />
</Frame>

Before execution, a confirmation modal ensures intentional action:

* Prevents accidental scan triggers
* Adds operational control
* Confirms scan initiation

***

## How Scans Work

Each scan performs a **multi-layered discovery process**:

1. **Asset Enumeration**
   * Subdomains
   * IP addresses
   * DNS records

2. **Service Detection**
   * Open ports
   * Running services
   * Web servers

3. **Data Correlation**
   * Mapping assets to hosts
   * Identifying relationships

4. **Exposure Identification**
   * Publicly accessible services
   * Misconfigurations
   * Security risks

***

## Continuous Monitoring

Scans can be scheduled (e.g., weekly) to ensure **continuous visibility**.

This enables:

* Detection of **newly introduced assets**
* Monitoring of **infrastructure changes**
* Early identification of **security risks**
* Tracking of **attack surface growth over time**

***

## Workflow Example

1. Launch a scan manually or via schedule
2. Scan begins asset discovery and enumeration
3. Assets and exposures are identified
4. Results are added to the platform
5. Risk Signals and Tickets are generated

***

## Best Practices

* 🕒 Run scans **regularly (weekly recommended)**
* 🎯 Ensure **complete domain coverage**
* 🔁 Review results after each scan
* 📊 Track trends to measure security improvements

***

## Value to Security Teams

| Benefit                    | Description                                 |
| -------------------------- | ------------------------------------------- |
| **Automated Discovery**    | Continuously identifies all external assets |
| **Real-Time Visibility**   | Always know what is exposed                 |
| **Risk Reduction**         | Detect exposures early                      |
| **Operational Efficiency** | Eliminate manual asset tracking             |

***

## From Discovery to Security

**Scan → Discover → Analyze → Detect → Act**

Scans form the **foundation of Attack Surface Management**, enabling all downstream security workflows.

***

## Explore Live Demo

<Card title="Explore ASM Live — No Signup Needed" icon="wand-magic-sparkles" href="https://suite.snapsec.co/demo">
  Instantly explore how Snapsec Attack Surface Management (ASM) discovers assets, detects exposures, and enables real-time security decisions — all in one unified platform.
</Card>
