Scanning a website for vulnerabilities
Last updated: January 19, 2022
Read time: 1 Minute
Scanning for vulnerabilities is the core of Burp Suite's automated testing capability. Burp Scanner can crawl a target to discover content and functionality, and then audit what it finds for vulnerabilities. Alternatively, you can use it to audit items that you have found manually.
In this tutorial, you'll learn how to scan a target by performing a crawl and audit. We'll also show you how to manage the scope of your scan and interpret the results. The tutorial will teach you how to configure both crawls and audits, to find the vulnerabilities most relevant to your work or to work within the constraints you have.