Welcome
Welcome to the documentation for HCL AppScan Standard version 10.4.0
Getting started
This section provides a short tour of basic product features and procedures, including using the wizard to set up a scan.
Configuration
You configure a scan by choosing settings that best describe your application, and the kind of testing you want.
Manual exploring
Manual exploring enables you to explore specific parts of your application, filling in fields and forms as you go. This can be a way of ensuring that particular areas of the site are covered, and that AppScan has the information needed to complete forms correctly.
Scanning
Learn how to start a scan, and what happens during the scan; how to manually manipulate the Explore stage, and how to export the results of a scan.
Data
Data view is populated with information about the structure of the site during the Explore stage of the scan.
Issues
Issues view provides access to the results of a scan. You can view results at a high level or select specific tests or objects and access more details. These details include how to fix, requests/responses, and differences between the test variants that resulted in issues. You can manipulate the severity of issues, resend tests (with or without modifications), and create reports based on Issues.
Reports
This section describes how to generate reports from the scan results.
Tools
This section explains how to use additional tools provided with HCL AppScan Standard.
Integrations
This section describes integrations of other applications with AppScan Standard:
Best practices
This section contains some best practices and use cases for advanced users.
FAQ & Troubleshooting
- General FAQ
  This topic addresses general application questions.
- Troubleshooting tools
- Digital signature troubleshooting
- External traffic recorder not recording
  If your external device is configured correctly, AppScan's external login recorder and external traffic recorder will show the traffic sent from the device as you send it. This section offers suggestions if it does not.
- Insufficient disk space
- License troubleshooting
- Login troubleshooting
  Tips for troubleshooting session detection problems in Scan Configuration > Login Management view.
- Low virtual memory
- Multi-step operation troubleshooting
  Some suggestions for troubleshooting action-based multi-step operations.
- No URLs found
- Out-of-session troubleshooting
  Some suggestions for troubleshooting out-of-session issues.
- Postman Collection scan
  Some suggestions for troubleshooting a Postman Collection scan.
- Server not responding
  Some suggestions for troubleshooting if the server is not responding.
- Replacing unsigned extensions
  If you want to use an unsigned extension that you used with a previous version of AppScan, you can either elect to trust it, or see if a signed version is available to replace it with.
- Extended Support Mode
  Extended Support Mode logs all AppScan activity, for packing and sending to your support provider to help troubleshooting a problematic procedure.
- Changing the default browser
  You can configure AppScan to use a browser other than its built-in browser.
- Reporting false positive results
- Logs
  This section includes explanations of Scan Log messages (View > Scan Log).
CLI
This section describes the syntax and options available using the Command line interface.
References
Menus and toolbar summaries, and glossary

Digital signature troubleshooting

About this task

Each time you open AppScan, it verifies the digital signature of its security rules (DLL file). Verification can fail for several reasons:

DLL file is corrupted
DLL file was tampered with (possibly by a hacker)
The following certificate, which is installed by default as part of the Windows installation, is missing from the list of "Trusted Root Certification Authorities" certificates in the Windows store:
```
VeriSign Class 3 Public Primary Certification Authority - G5
```

Procedure

Make sure you have the following root certificate installed:

VeriSign Class 3 Public Primary Certification Authority - G5

Uninstall and re-install AppScan.
If these steps do not solve the problem, contact Support.

Note: The warning message gives you the option of continuing if you are sure your system has not been compromised.