[Features of Signature groups]
<Recommend signature group>
We recommend this signature group since it has a good balance of scanning time and accuracy.
The signature group includes most common scanning patterns enabling high detection rate, and signatures to detect vulnerabilities caused by frequently used products.
<All signature group>
This signature group includes all signatures currently available, realizing a highly accurate detection of vulnerabilities.
In addition to the signatures of the recommend group, it includes signatures to detect vulnerabilities which are not frequently detected, such as those caused by specific products.
However, in addition to the signatures of Recommended group, other scanning patterns are sent to the same target in order to increase the accuracy. This may cause duplicate detection of the same vulnerability by multiple signatures, and longer scanning time due to the increase in the number of signatures to be sent, comparing with "Recommend signature group".
<Speed prioritized signature group>
Scanning speed is the highest priority in this signature group.
The signatures are the same as the ones of "Recommend signature group". However, this group can improve scanning speed by automatically determining the usage of parameters, and skipping scans for the parameters determined as unused.
*Vex determines whether a parameter is used or unused, based on the difference in responses at the time of manipulation of the parameter (e.g. insertion of special symbols).
[Differences between Signature groups]
-Difference between "Recommend signature group" and "All signature group"
They differ in the detection accuracy and scanning time.
In addition to the signatures of "Recommend signature group", "All signature group" includes signatures to detect vulnerabilities which are not frequently detected, such as those caused by specific products.
-Difference between "Recommended signature group" and "Speed prioritized signature group"
They differ in the scanning time.
Signatures included in "Speed prioritized group" are basically same as the "Recommend group", but they are designed to skip some scans by automatically determining the usage of the parameters.
Note that any of the signature groups completely cover the entire vulnerability categories, and there are no vulnerabilities that can be detected only by a particular signature group.
This method is considered to be effective to shorten the scanning time from the perspective of reducing the number of target parameters. However, we cannot guarantee that the results will be exactly the same as when all the parameters are scanned, since it is based on mechanical judgment.