Scanning Sites With Logins SortSite Developer Manual

For sites that provide a login form on a web page:

  1. Record the login sequence in the SortSite desktop app using the ‘Record Form Input’ command on the Check menu
  2. Quit the app and restart, then scan from the login page to make sure the recorded login works (diagnosing problems here is much easier than at the command line)
  3. Export the recorded login sequence using the Export command on the File menu and choose the ‘Recorded Forms’ export option
  4. Include the exported replay.xml file using the ReplayFile element in the config file https://www.powermapper.com/products/sortsite/man/dev/config/

Note: all these steps must be done on the same computer that runs the command line tool, otherwise encryption and decryption of credentials will use mis-matching keys