Scheduling Scans in Invicti Standard
Invicti Standard enables you to schedule any scan in advance. This includes both full and incremental scans, as well as scans on new or multiple instances of Invicti Standard. This document describes how to schedule a scan, how to edit a scheduled scan, how you can restrict a scan to run during a specific time using AutoHotkey, and how to configure and send automated reports on the completion of a scheduled scan.
How to schedule a scan
- Open Invicti Standard.
- From the ribbon, click the Home tab, then select Schedule. The Schedule a New Scan dialog will then appear.
- Complete the Schedule a New Scan dialog.
- Click Schedule. The Overwrite dialog is displayed.
- Click Overwrite to save your current profile with the current name in order to create a new scheduled scan. The Schedule a Scan dialog is displayed.
- In the Scheduled Task section:
- Enter a Name for the scan
- In the Run as User field, enter the user's name
- In the Password field, enter the password
- Enable the Run only when user is logged on checkbox, if required.
- In the Recurrence section:
- In the Run Scan on field, enter the date and time
- In the and repeat dropdown, select the recurrence option:
- Never (Scan will run ONE TIME)
- DAILY
- WEEKLY
- MONTHLY
- Enable the After scan, export these reports checkbox to activate scan exports, then from the dropdown, select which type of Report to export.
- In the Save location box, enter an alternative location, if required. Otherwise, the report will export to the default location on your local machine (C:\Users\[username]\Documents\Invicti\Reports\[report name] (Default-[date][time]).[ext]).
- Click Save.
How to edit a scheduled scan
- Press the Windows logo key .
- Search for Task Scheduler.
- From the Task Scheduler window, select Task Scheduler Library.
- Double-click Invicti - [name of the scheduled scan]. (This example uses Schedule.)
- From the Invicti - Schedule Properties window, select the Trigger tab.
- Select Edit.
- Make necessary changes to your scheduled scan(s).
- Select OK to save the changes.
How to restrict scans to run during a specific time
- Download and install AutoHotkey, an open source utility that can be used to find the running instance of Invicti Desktop, and trigger the keys that resume and pause scans.
- Download the following AutoHotkey scripts, which will be used to pause and resume the web security scans:
- Configure all the scan parameters (such as Target URL, Scan Policy, and Reports Policy).
- Launch the scan.
- Pause the scan as soon as it starts.
- Once the scan is paused, configure two Windows Task Schedules:
- One for resumenetsparker.ahk at the scan starting time
- One for pausenetsparker.ahk at the scan finishing time
The scan will be resumed automatically when the first scheduled task starts, and if it is not finished by the finishing time, it will be paused automatically by the scheduled task
NOTE: You should have a single instance of Invicti Standard running. If you have more than one, the AutoHotKey scripts will work only for the one that you’re running, not necessarily for the one you want to resume/pause. |
How to configure automated scheduled scan email reports
Using Powershell scripting, you can configure an automatic email to be sent with the scan report attached upon completion of a scheduled scan.
- Download the files ScanAndMail.rar and urls.txt files from Invicti.
- Copy the files ScanAndMail.ps1 and urls.txt files to the Invicti installation folder on your local machine.
- Open ScanAndMail.ps1 with a text editor and specify the SMTP server and mail settings from lines 3 to 11.
- Open urls.txt with a text editor, and specify the URL of the web application you would like to scan and the path of where to save the scan report, separated with a semicolon. To scan multiple websites, specify the same parameters for each website in a new line.
- Once all the settings are configured, use Powershell to execute the script, which creates a Windows Scheduled Task and launches the scan(s):
Powershell –ExecutionPolicy Unrestricted –File "C:\Program Files (x86)\Invicti\ScanAndMail.ps1
TIP: The installation folder of Invicti Standard in a 32-bit Windows installation is c:\Program Files\Invicti. |