Extensions

With AppScan® it is easy to write and integrate extensions. Extensions are add-ons that add functionality to AppScan®. They can be anything from a small email notification utility, to a full blown vulnerability exploit tool. Extensions enable users to customize AppScan® to their own needs. They are written using AppScan's SDK and extensions framework.

The SDK online help file AppScanSDK.chm can be found in the main AppScan® documentation folder.

AppScan® comes with some extensions built-in, and it is easy to integrate and manage additional extensions using the Extension Manager.

Extension Description and link
Burp Traffic Importer This extension lets you import a collection of requests into AppScan as a BURP file. AppScan will use the requests to explore the site as if you had explored it manually yourself. The Burp Traffic Importer GitHub repository can be found here: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-burp-importer
Import URLs This extension lets you import a list of URLs into AppScan as a text file. AppScan will explore these URLs as if you had explored them manually yourself. The Import URLs GitHub repository can be found here: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-import-urls/tree/main
PyScan Pyscan is an extension that enables you to control AppScan through Python. The PyScan GitHub repository can be found here: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-pyscan