Use the URLs collected

The manual test is initiated by means of navigation through the application’s URLs with the Browser activated by N-Stalker’s internal Proxy which captures all requisitions and responses from the application (as in the configuration for recording of a navigation macro). Once the URLs you wish to analyze are captured, we can inform on how to use them for analysis, selecting and redirecting the attack mode.

1.	The first stage is to know the application’s URL and the path you wish it to follow, and then choose the "Manual Test" policy to initiate the manual Scan manual, according to the steps below:

2.	Type the URL of the web application and in "Choose Scan Policy", it is necessary to choose the "Manual Test” policy (crawl through the URL and standby for manual attack)".

3.	After finishing, please click on the "Next" button to proceed until reaching the "Review Summary" screen. If all is correct, press the "Start Session" button. The "Scanning Assistant" is closed and the "Scanning Interface Scanning" is open to initiate the manual analysis section.

4.	In "Scan Options" click on the "Start Proxy" button. The Proxy will be iniatited.

5.	The Proxy options are available as an additional panel with the name "Proxy Panel", on the screen’s lower corner. Just click on the "Start Proxy" button:

6.	After initiating, click on the "Start Browser" button. The N-Stalker will try to automatically configure your navigator for use inside the “Macro Recorder” tool. If you find problems doing so, please configure it manually (using the network connection of your browser).

7.	Start navigating throughout your application. Run through a path you would like the N-Stalker Spider engine would also follow. N-Stalker records all information within the "Proxy Panel" table:

8.	As soon as navigation is completed by the application , click on the "Stop Proxy" button.

The “Website Tree” control allows user to visualize all the resources that were gathered during the trip of the N-Stalker spider/proxy engine, including web pages and transactions. The “Website Tree” is co-ordinated by web servers (URLs) which represent all the various hosts located on the crawler path (please remember that only the URL itself and the allowed hosts can be crawled through).

Sometimes the applications may refer to external web sites which are not relevant for the verification of global security, however, there are some situations where external web sites are part of the inspected application and thus must be assessed.

In the "Scanner Events" tree, on the "Rejected Hosts" option, it is possible to see a list of web sites that had been rejected by the N-Stalker spider engine due to configuration restrictions.

7. In case you need to explicitly authorize a host from the list, please right click on it, then click on "Enable Host" and confirm by clicking on the "Yes" button.

8. After navigating throughout your application and having accomplished the desired configurations, click on the "Start Scan" button to initiate the scanning engine.

Then a screen with 3 options related to the data stored by the proxy is displayed. Please select the option of your choice in case you wish to initiate Scan only with data stored by the proxy. Use the proxy data to track new URLs or to track all the URLs again including data stored by the proxy.

•	Use proxy data only and do not crawl for additional URLs

If you select this option the Scanner will be executed only in the URLs stored by the proxy.

If you select this option the Scanner will be executed in the URLs stored by the proxy but will also search for new URLs to be analyzed.

•	Crawl all URLs again including those from proxy data

If you select this option the Spider will track all URLs again, including the URLs stored beforehand by the proxy.

On the right corner of the screen, the quantity of URLs captured by the proxy at the time of navigation is then informed. Please select your option and click on the "Done" button to initiate execution of tests.

On the "Scan Modules" guide, on the footer of the N-Stalker scanning interface, there is a series of guides containing technical information about the scanning progress status including event items, components and depuration.

Before starting the manual test wait until the status shifts to the "Standby Mode - You may now run manual attacks or press "Close" to finish session" on the footer of the application.