if critical vulnerability found.

| Vulnerability | FP Cause | Fix | |---------------|----------|-----| | SQL Injection | Input echoed back but no DB execution | Manually verify with sleep() payload | | XSS | Application encodes output but scanner didn't detect encoding | Use AcuSensor or manual test | | Path Traversal | File read errors misinterpreted | Check if actual file contents exposed | | Host Header Injection | Scanner sees a reflected header | Verify if exploit can poison cache |

14-day full-featured trial (on-prem or online). 16. Troubleshooting Common Issues Problem: Scan never finishes (hangs) Solution: Reduce crawl depth, exclude /logout , check for infinite redirects.

Subscription-based (annual). Contact Invicti for quotes.

Scanner cannot log in Solution: Re-record login macro; check if CAPTCHA or 2FA is present (not supported).

Scan too slow Solution: Increase threads, disable JS rendering, exclude large directories.