Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Cumulonimbus rank

Cumulonimbus

Feb 19, 2018

ASM

Hi DC,

How can I perform vulnerability assessment using ASM ?

Thanks in advance.

1 Reply

Erik_Novak
Employee
Feb 20, 2018
ASM is a web application firewall, and is not specifically designed to be an application security testing tool. However, if you create a security policy and place it into Transparent enforcement mode, you can review the violations and learning suggestions that will be generated as HTTP traffic is observed. This will give you some idea about the threats facing your application. There are plenty of vulnerability assessment tools out there, such as WhiteHat, AppScan, Immuniweb, and others which can be configured to crawl your application and then report on identified vulnerabilities.

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5