search

Scheduled Scans

Scheduled Scans let you automate recurring scans on your domains so you don't have to manually launch them. This is essential for continuous monitoring — Ryft will automatically scan your domains on the schedule you define and notify you of any new findings.

hashtag
Accessing Scheduled Scans

In order to create a scheduled scan, you first need to run an initial scan, after your first scan has ran, from the Domainsarrow-up-right page, select the 'View Results' button and then click the Schedule Scans button on the left side panel.

hashtag
Creating a Schedule

1

hashtag
Choose Scan Mode

  • Recon Only — Runs reconnaissance modules to discover new assets

  • Full Scan (Recon + Vuln Modules) — Runs discovery followed by vulnerability testing

2

hashtag
Select Vulnerability Modules

If you chose Full Scan, select which vulnerability modules to include (see Vulnerability Dashboard for details on each module):

You can also select hygiene modules (see Vulnerability Dashboard):

  • DNS Security Configuration

  • TLS/SSL Configuration

  • HTTP Security Headers

And cloud modules (see Cloud Modules):

  • S3 Buckets

  • GCP Buckets

  • Cloud Asset Inventory

circle-info

Each module shows its required subscription tier.

3

hashtag
Set the Schedule

Choose how often the scan should run:

Frequency
Required Tier

Every 5 minutes

Growth

Every hour

Growth

Every 5 hours

Growth

Every day

Pro

Every week

Starter

For daily schedules, you can set a specific time of day and timezone for the scan to run.

4

hashtag
Configure Options

On the Configure tab, you can set:

  • Authentication headers — If your targets require authentication

  • Custom HTTP headers — Additional headers to include in requests

  • Rate limiting profile — Conservative, Moderate, or Aggressive

  • Custom templates — Select which custom vulnerability templatesarrow-up-right to include

  • Scan new assets only — Only scan assets discovered since the last scan

5

hashtag
Save

Click Save Schedule to activate the scheduled scan. You'll see a confirmation with a summary of your configuration, including a human-readable description of the schedule (e.g., "This scan will run every day at 02:00 UTC").

hashtag
Managing Existing Schedules

If a schedule already exists for a domain, the page shows the current configuration. You can:

  • Enable/Disable — Toggle the schedule on or off without deleting it

  • Edit — Modify any aspect of the schedule

  • Delete — Remove the schedule entirely (a confirmation dialog appears)

hashtag
How Scheduled Scans Work

When a scheduled scan triggers:

  1. Ryft checks for duplicate scans — if the same scan is already running, it won't launch another one.

  2. The scan executes with the configured modules and settings.

  3. Results are stored and deduplicated against previous findings.

  4. You receive notifications (in-app and email, if configured in Settingsarrow-up-right) when the scan completes or if new vulnerabilities are found.

Scheduled scan executions appear on the Scansarrow-up-right page alongside manually launched scans.

PreviousHow Scanning WorksNextCloud Modules

Last updated