Scan an application using autopilot

2023/7/6 |

Autopilot is an interface feature that automatically identifies technical information of an application, such as its framework(s), and creates the corresponding scans. Autopilot enables stakeholders to scan applications without technical knowledge of them. This article describes how to use autopilot to scan an application that might contain code from multiple frameworks.

In this article, you will learn how to:

  • Create a new autopilot scan for an application.
  • Create subsequent autopilot scan for an application.
  • Change autopilot scan settings for an application.

At the end, you will be able to create a new autopilot scan for an application.

Create a new autopilot scan for an application

  1. Create a zip file containing all source code and dependencies of the application.
  2. Open the Web UI using a browser and sign in with your credentials.
  3. Select New Application on the Action Bar, then select Autopilot.
  4. Enter the name of the application, and optionally enter one or more tags (separated by commas) to categorize the application. Under source code, choose the zip file you created previously. You can also change the scan arguments, rule package, weakness policies, and vectors. These options will be used by this and subsequent autopilot scans of this application. Once you are finished, select Start to start the autopilot scan.
  5. The Web UI will create a new application and a new scan for each framework identified in the source code archive. You will be redirected to the home page so you can review the created applications and scans.

Create subsequent autopilot scans for an application

  1. Create a zip file containing all source code and dependencies of the application.
  2. Open the Web UI using a browser and sign in with your credentials.
  3. Select the application that was created by the first autopilot scan, then select Create. If multiple applications were created by the first autopilot scan, you can select any of them.
  4. Under source code, choose the zip file you created previously. Then select Start to start the autopilot scan.
  5. The Web UI will create new applications if additional frameworks are identified. It will then create a scan for each framework using the settings from the first autopilot scan. You will be redirected to the home page so you can review the created applications and scans.

Change autopilot scan settings for an application

  1. Open the Web UI using a browser and sign in with your credentials.
  2. Select the application that was created by the first autopilot scan, then select Settings.
  3. Change the options as necessary, then select Save. If you made change to Application name, Application tags, Member users, Member group, Scan arguments, Rule package, Weakness policies, or Vectors, repeat these changes on all applications created by the first autopilot scan. Repository has no effect for autopilot scans.