Skip to content

Experimental Options

The following experimental features can be enabled in your scan configuration. These features are under development and may change.

WebApp Surface Scan

Enables the WebApp surface scan on all WebApp assets.

experimental:
  enable_webapp_surface_scan: true

WebApp Extractor

Enables the WebApp extractor on all WebApp assets. This will boost the discovery of APIs in the ASM.

experimental:
  enable_webapp_extractor: true

Agentic Pentesting

Enables agentic pentesting on API DAST and WebApp DAST scans. You can review scan logs and search "Agentic" to find related events, like reasoning or actions.

experimental:
  agentic_pentesting: true

BLST (new engine)

Enables BLST (Business Logic Security Testing) with a new crawling engine on API DAST.

This will appear in your scan logs, search for "BLST" and you may see generated mermaid graphs that explain the reinjection patterns and exploration logic of your API, following a happy path scenario. (search for mermaid in logs)

experimental:
  blst_enabled: true

BLST Exploration Only

When enabled, BLST will run without executing any security tests. This allows you to explore BLST capabilities without running security tests.

experimental:
  blst_exploration_only: true

Note

When using blst_exploration_only, you must also enable blst_enabled.