The "Scans" page shows a list of all scans that have already run, are currently running, or are scheduled to run. It is the central point of access for managing all scans in your landscape. At the moment, it should be blank because we haven't scheduled a scan yet.
Now that your basic infrastructure is up and running, it's time to create your first scan. We'll actually create two scans in this demonstration, both of which will run on our dummy site.
Before we create a scan, let's take a moment to talk about what an "agent" is. In Burp Suite Enterprise Edition, your automated scans are performed by virtual entities known as "agents". Each agent can only perform a single scan at a time. Therefore, to perform multiple scans simultaneously, you need multiple agents. You don't need to worry too much about this for now. All you need to know is that once you schedule a scan, it will be performed by the next free agent. Your trial license includes 30 agents automatically, which means you'll be able to perform up to 30 concurrent scans once you assign them to machines.
As we only need one agent at the moment, we'll talk about assigning more agents later.
Let's create a quick, one-time scan of the dummy website so that we have some results to work with.
While we wait for the quick scan to finish, let's set up a recurring scan. Recurring scans are useful for generating plenty of data so that you can keep track of how your security posture is improving over time. Let's schedule a more thorough daily scan of our dummy site.
On the "Scans" page, the recurring scan should appear in the list with the status "Scheduled". Later, you can create a similar scan for your own sites so that every morning you will have the results of the scan ready to analyze. For example, you can see how many issues the developers were able to resolve the previous day.
By now, the quick scan might also have finished.
Once your scan has finished, you can move on to processing the results.