Rescan by Risk Vector Ingrid Findings data for select Diligence risk vectors can be rescanned. Rescan timelines are outlined as follows:Compromised Systems, User Behavior, and Public Disclosure findings cannot be user-rescanned. TLS/SSL Configurations and Certificates, Open Ports, and Server Software provide an Instant Reply when a rescan is requested. The rest of the risk vectors have a base duration for user-requested rescans. See the timeline for details. SPF Domains Automated Rescan: 2 Weeks User-Requested Rescan Base Duration: 3 Days DKIM Records Automated Rescan: 30-50 Day User-Requested Rescan Base Duration: 3 Days TLS/SSL Certificates Automated Rescan: 30 Days User-Requested Rescan: Instant Reply TLS/SSL Configurations Automated Rescan: 30 Days User-Requested Rescan: Instant Reply Open Ports Automated Rescan: 30 Days User-Requested Rescan: Instant Reply Web Application Security Automated Rescan: 30 Days User-Requested Rescan: Instant Reply Patching Cadence Automated Rescan: 30 days maximum. User-Requested Rescan: Not available. Insecure Systems Automated Rescan: Daily User-Requested Rescan: Not available. Server Software Automated Rescan: 8 Days User-Requested Rescan: Instant Reply Desktop Software Automated Rescan: Not applicable. The Desktop Software risk vector is not assessed using automated scans. Instead, our internal records are updated weekly based on data received from our partners. Learn how this risk vector is observed. User-Requested Rescan: Not applicable. Mobile Software Automated Rescan: Not applicable. The Mobile Software risk vector is not assessed using automated scans. Instead, our internal records are updated weekly based on data received from our partners. Learn how this risk vector is observed. User-Requested Rescan: Not applicable. DNSSEC Automated Rescan: 2 Weeks User-Requested Rescan Base Duration: 3 Days Mobile Application Security Automated Rescan: Up to 2 weeks after a new version is released. User-Requested Rescan Base Duration: 11 Days Web Application Headers Automated Rescan: 30 Days User-Requested Rescan Base Duration: 3 Days DMARC Automated Rescan: 30 Days User-Requested Rescan Base Duration: 3 Days Domain Squatting Automated Rescan: 2 Weeks User-Requested Rescan: Not available. September 9, 2025: Instant reply for certificates. August 20, 2025: Added TLS/SSL Certificates vector. June 25, 2025: SPF Domains user-requested rescan is 3 days; DKIM Records user-requested rescan is 3 days; TLS/SSL Certificates automated rescan is 30 days; TLS/SSL Configurations automated rescan is 30 days & user-requested rescan supports Instant Reply; Open Ports automated rescan is 30 days & user-requested rescan supports Instant Reply; Web Application Headers automated rescan is 30 days; Server Software user-requested rescan supports Instant Reply; DNSSEC user-requested rescan is 3 days; Web Application Security automated rescan is 30 days & user-requested rescan is 3 days. October 8, 2024: Domain Squatting scan frequency updated to be more accurate. April 30, 2024: DMARC risk vector. Related to finding rescan Related articles What is a Finding Rescan? Requesting a Rescan Finding Rescan: Asset Not Found and Assumed Remediated Web Application Headers Risk Vector Verifying That a Finding Is Remediated Feedback 0 comments Please sign in to leave a comment.