What determines the size of temp files required for AppScan
上一篇 /
下一篇 2010-08-11 15:49:15
/ 个人分类:IBM Appscan Security Scan
|
| | | Question | | What is the criteria that determines the size of temp files placed in RAM and on the hard drive during the progress of a scan using IBM® Raitional® AppScan® Standard Edition? | | |
|
|
| Answer |
The AppScan scan file size depends on the site content and structure (such as, number of parameters and their various values, responses size, number of cookies and their values, and so forth).
AppScan holds most of the information on disk in the Microsoft® Windows® TEMP directory and only part of the scan in memory. Every component of the scan has an impact on the size of session while scanning and the final session file.
This can affect the amount of data placed in the TEMP folder: - Explore responses: AppScan saves the full explore response
- Test requests(potential vulnerabilities): not just the number of them but also the size of the requests (large POST requests will consume more space)
- Test responses: AppScan saves the full test response for each test even if it is duplicate, as well as all the connections between the AppScan entities and responses
When you save the scan, AppScan zips the temp files to a scan file that is between 12.5% to 25% of the open session file. Some of the redundant information will be removed after you save and open the session.
These are the things that affect the memory consumption:- AppScan entities: hosts, directories, parameters, cookies
- Strings: parameter names for example
- A complex site with many hosts and complex directory structure will result in high memory consumption
|
收藏
举报
TAG:
