Define a scanner implementation script include

When defining a scanner to be used by Vulnerability Response, you are asked to add a script include to identify the actual scanning behavior.

Before you begin

Role required: script_include_admin

Procedure

  1. Navigate to System Definition > Script Includes.
  2. Click New.
  3. Provide a scanner name and define its accessibility:
    All application scopes
    Can be accessed from any application scope.
    This application scope only
    Can be accessed only from the current application scope.
    If the scanner is defined out of the Vulnerability scope, set the Accessible from field to All application scopes.
  4. Populate the Script box with the baseline class structure and modify it to extend sn_vul.VulnerabilityScanner Base.
  5. Add an implementation method for launchScan to define the scanning behavior.
    Define where the request is made with a third-party scanner system and where the state of the scan record is updated. The signature for this method is launchScan: function(scanGr).
    Note: The VulnerabilityScannerBase script include contains functions, such as convenience functions for setting the error state and message on the Scan record. The script include can also be used to determine and normalize IP addresses from the CIs in the scan record.
  6. Click Submit.