If you're worried about our scanning bringing a system offline, or causing heavy traffic to a production system, rest assured that Intruder's scanning engine is configured to be safe to use, even when scanning production systems

Intruder's scanning engines are designed to be safe. This means that our checks confirm vulnerabilities in ways which cause no downtime, and do not cause unintentional damage.

Some web vulnerabilities do require a thorough set of tests to confirm, and so you may see high traffic on websites you're scanning. However, modern and well-resourced web servers shouldn't have any trouble dealing with this volume. However, if you know you have significant resource constraints; or reasons why your system may not respond well to a peak in traffic, you may want to increase server resources or run a scan outside busy times.

Certain types of denial of service (DoS) vulnerabilities, including distributed attacks (DDoS) are not part of Intruder's vulnerability scanning offering. Checking for denial of service (DoS) vulnerabilities often involves sending overwhelming amounts of traffic to systems, and so Intruder does not perform these types of checks.

If you ever need to cancel a scan, just use the control panel on the scans page:

If you have any further questions around how Intruder's scans might affect your systems, please contact us in the in-app chat box.

Did this answer your question?