Documentation Index
Fetch the complete documentation index at: https://docs.snapsec.co/llms.txt
Use this file to discover all available pages before exploring further.
Overview
Scan Profiles define how your scanner behaves during execution. They control request configuration, rate limits, and headers—allowing you to tailor scans for different environments like staging, production, or protected applications.Profile Configuration
Profile Details
- Profile Name Identify the purpose of the scan (e.g., Rate Limit Profile, Cloudflare Bypass)
Custom Headers
Common Use Cases
- Add
Authorizationtokens (JWT, API Keys) - Include session cookies
- Bypass WAF/CDN protections
- Test authenticated endpoints
Key Controls
Override Host
Replace the target host during scan execution. Use Case:- Scan staging while routing through production domain
- Test internal services behind reverse proxies
Rate Limiting
Control how aggressive your scan is.- Define requests per second
- Prevent server overload
- Avoid triggering rate-limiting or blocking mechanisms
Existing Profiles
Profiles can be reused across applications.Examples
- Rate Limit Profile → Controlled scanning for production
- Host Override → Custom routing for testing environments
- Cloudflare Bypass → Headers configured to bypass protections
- Edit configuration
- Delete when no longer needed
Why It Matters
Scan Profiles give you control over how your scanner interacts with real systems.Key Benefits
- Safe scanning in production environments
- Authenticated testing for deeper coverage
- Reduced false positives from blocked requests
- Flexible configuration for different deployment setups
- Better alignment with real-world traffic behavior
Explore Live Demo
Explore WAS Live — No Signup Needed
Create scan profiles tailored for your infrastructure and security needs.