Welcome
Reference
Review reference information for the product.
Compliance
Compliance with United States government security and information technology regulations helps to remove sales impediments and roadblocks. It also provides a proof point to prospects worldwide that HCL® is working to make its products the most secure in the industry. This topic lists the standards and guidelines that AppScan® Enterprise supports.

Welcome
Welcome to the HCL AppScan Enterprise 10.10.0 documentation, where you can find information about how to install, maintain, and use HCL AppScan Enterprise.
Accessibility features for AppScan® Enterprise
Accessibility features assist users who have a disability, such as restricted mobility or limited vision, to use information technology content successfully.
Overview
Learn general information about the product.
Installing
Learn how to install the product.
Upgrading and migrating
Learn how to upgrade the product.
Integrating
Learn how to integrate the product with other solutions.
DevOps
Learn how to extend the product with REST APIs and plugins.
Best practices
Learn best practices for using the product.
Configuring
Learn how to configure the product.
Administering
Learn how to administer the product.
Managing application risk
Follow this workflow to manage application security risks in your organization.
Troubleshooting and support
To help you understand, isolate, and resolve problems with your HCL® software, the troubleshooting and support information contains instructions for using the problem-determination resources that are provided with your HCL products.
Reference
Review reference information for the product.
- Configuring Wizard topics
  Learn about configuring wizard topics.
- Folder Explorer topics
  Learn about folder explorer topics.
- Triage with reports
  Reports are automatically generated after a job has run. They provide a way of managing issues so that you can helps you manage issues that are important to your organization and do so in a way that is supported both by the Enterprise Console's workflow and the workflows of other processes within your organization.
- Configuration Manager
- Command-line utilities
  This section provides information about standalone command-line utilities that are included with AppScan Enterprise. These tools perform specific tasks outside of the main graphical user interface.
- AppScan resources
  A GitHub collection of integrations, helper scripts, utilities, useful examples, libraries, and other resources related to HCL AppScan.
- Compliance
  Compliance with United States government security and information technology regulations helps to remove sales impediments and roadblocks. It also provides a proof point to prospects worldwide that HCL® is working to make its products the most secure in the industry. This topic lists the standards and guidelines that AppScan® Enterprise supports.
- WebSocket support
  AppScan Enterprise seamlessly handles WebSocket protocols that use JSON or XML messages for data exchange by automatically detecting them and executing the appropriate tests during the scan, without requiring any special configuration.
Glossary

United States government regulation compliance

Compliance with United States government security and information technology regulations helps to remove sales impediments and roadblocks. It also provides a proof point to prospects worldwide that HCL® is working to make its products the most secure in the industry. This topic lists the standards and guidelines that AppScan® Enterprise supports.

Voluntary Product Accessibility Template (VPAT) compliance document

A VPAT is a document that helps buyers and sellers assess the accessibility of Information and Communication Technology (ICT) products and services, ensuring compliance with standards like Section 508 of the Rehabilitation Act of 1973, the Web Content Accessibility Guidelines (WCAG), and EN 301 549.

You can find the Accessibility Conformance Report (based on the VPAT) for AppScan Enterprise and other AppScan products on the official HCL Accessibility Compliance Reports page.

Federal Information Processing Standard (FIPS)

AppScan Enterprise supports Federal Information Processing Standard (FIPS) Publication 140-2. You can enable FIPS mode on the AppScan Enterprise to ensure that all sensitive data is protected by FIPS 140-2 approved cryptography.

For instructions on how to enable this mode, see FIPS 140-2 compliance.

National Institute of Standards and Technology (NIST) Special Publication (SP) 800-131a

AppScan Enterprise supports the security requirements of NIST SP800-131a. This standard provides guidance for cryptographic key management, including the use of specific algorithms and key lengths for secure communications. Government agencies and financial institutions often use these guidelines to ensure that products conform to specified security requirements.

For instructions on how to enable this mode, see NIST SP800-131a compliance.