For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Cumulonimbus rank

Cumulonimbus

Feb 20, 2018

ASM

Hi DC,

How can I perform vulnerability assessment using ASM ?

Thanks in advance.

application delivery

ASM Advanced WAF

1 Reply

Erik_Novak
Employee
Feb 20, 2018
ASM is a web application firewall, and is not specifically designed to be an application security testing tool. However, if you create a security policy and place it into Transparent enforcement mode, you can review the violations and learning suggestions that will be generated as HTTP traffic is observed. This will give you some idea about the threats facing your application. There are plenty of vulnerability assessment tools out there, such as WhiteHat, AppScan, Immuniweb, and others which can be configured to crawl your application and then report on identified vulnerabilities.

F5 Academy at AppWorld 2026

DevCentral News

Kostas Injeyan - October 2025 Featured Member

DevCentral News

featured member

Introducing the F5 AI Assistant for BIG-IP

Technical Articles

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5