Extensions
With AppScan® it is easy to write and integrate extensions. Extensions are add-ons that add functionality to AppScan®. They can be anything from a small email notification utility, to a full blown vulnerability exploit tool. Extensions enable users to customize AppScan® to their own needs. They are written using AppScan's SDK and extensions framework.
The SDK online help file AppScanSDK.chm can be found in the main AppScan® documentation folder.
AppScan® comes with some extensions built-in, and it is easy to integrate and manage additional extensions using the Extension Manager.
Extension | Description and link |
---|---|
Burp Traffic Importer | This extension lets you import a collection of requests into AppScan as a BURP file. AppScan will use the requests to explore the site as if you had explored it manually yourself. The Burp Traffic Importer GitHub repository can be found here: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-burp-importer |
Import URLs | This extension lets you import a list of URLs into AppScan as a text file. AppScan will explore these URLs as if you had explored them manually yourself. The Import URLs GitHub repository can be found here: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-import-urls/tree/main |
PyScan | Pyscan is an extension that enables you to control AppScan through Python. The PyScan GitHub repository can be found here: https://github.com/HCL-TECH-SOFTWARE/appscan-standard-pyscan |