False Positive Options

 		Top  Previous  Next

This panel allows you to customize false-positive settings, including your own keyword filters.

 

Automatic False-positive settings

 

fp-options-1

 

Enable automatic "404 not found" false-positive filter

When enabled, N-Stalker will attempt to identify non-standard "404 not found" responses, usually by making different non-existent requests over a period of time.

Interval between requests

This is the interval period (in seconds) between non-existent requests (usually they are necessary to identify if inexistent resources will change through time).

Enable automatic default web page detection

When enabled, N-Stalker will keep track of the application's default page and will match uncommon requests against it. Sometimes inexistent resources can end up being rendered by default's web page.

Interval between requests

This is the interval period (in seconds) between  default page requests (usually they are necessary to identify if resources will change through time).

Enable automatic file extensions false-positive filter

When enabled, N-Stalker will test every file extension found within the Web Application against a non-existent response. A filter will be created for each different extension to avoid non-existent false-positives.

 

False-positive keyword filter

 

fp-options-2

 

False-positive Keyword Filter

This is a manual list of user-provided false-positive keyword filter. N-Stalker will match these keywords against HTTP response in order to detect invalid responses. Add/remove new filters through the "Plus/Minus" button located in the upper right corner. You may also use regular expression.

 

Recursive URL Protection Settings

 

fp-options-4

 

Disable N-Stalker Recursive URL Protection

Unless you know what you are doing, do not check this option (recursive protection will protect you against malformed applications).