Acutenix Software
Acutenix AcuSensor Technology
INTERACTIVE APPLICATION SECURITY TESTING
Interactive Application Security Testing (IAST) with AcuSensor
The AcuSensor technology is an additional component of Acunetix. When you install and use AcuSensor, Acunetix becomes an IAST solution (grey-box scanner), not just a DAST scanner (black-box scanner). AcuSensor works with applications written in Node.js, PHP, Java (including the Spring framework), and ASP.NET.
Scan every file — even hidden ones
Most scans miss unlinked and hidden files because crawlers can’t see them. By deploying the IAST sensor within your runtime environment, you’ll gain enhanced visibility into the backend of your web application — this encompasses information about the files utilized by the web application as well as the routing within it. When web API routing is present, you can now discover APIs that are used by the web application.
With Acunetix, you can also import API definition files and links so you can perform tests on all your APIs that use a REST, SOAP, or GraphQL architecture.
Now, you can have confidence that every part of every page has been mapped and tested, which ultimately means bad actors have fewer ways to attack you.
What Are the Benefits of AcuSensor?
When you use AcuSensor, Acunetix gets additional information from the server back end, at the time when Acunetix is scanning the web application. This additional information introduces a number of improvements.
Ease of remediation
AcuSensor connects to the code interpreter or compiler (depending on the language) and it can identify the exact line of source code (for PHP) or point to a location in a stack trace (for Java and ASP.NET). With this information, your developers can fix vulnerabilities much faster.
Greater precision
AcuSensor can detect the following vulnerability types with 100% confidence: SQL Injection, code injection, CRLF injection, directory traversal, arbitrary file creation/deletion, email header injection, file upload, file inclusion, file tampering, PHP code injection, and PHP SuperGlobals overwrite.
TRUE INCREMENTALS
During an incremental backup, only files changed since the most recent backup are included. Its advantage is that it takes the least time to complete.
How Does AcuSensor Work?
The Acunetix scanner works by sending payloads and analyzing responses. When the web server receives the payload, it executes back-end code. If AcuSensor is installed, it analyzes the executed back-end code and provides the scanner with additional information.
You must install AcuSensor on the server for the selected language. AcuSensor is available for Linux/UNIX and Windows servers.
AcuSensor works directly with the PHP interpreter as well as Java and ASP.NET bytecode compilers.
You do not need to modify your source code at all to use AcuSensor. This is a major advantage over IAST offerings that require you to compile sensors within your code, often requiring you to change your build process or add software dependencies to your project.
When to Use IAST?
AcuSensor works best in specific environments and is not recommended for some of the others. To get the best out of AcuSensor, use it in the right environment.
You should install AcuSensor on your staging servers. This is the best place to perform IAST analysis.
You may install AcuSensor on virtual machines to perform IAST analysis as part of CI/CD pipelines. In this case, the AcuSensor installation would need to be done as part of the CI/CD pipeline.
We do not recommend installing AcuSensor on production servers. An active AcuSensor consumes some resources, so your production web applications may run slower.
AcuSensor is currently available for Node.js, PHP, ASP.NET, and Java. Let us know if you would like us to create an AcuSensor for your technology.
Services
Service ur Laptop or Notebook, PC, UPS, Printer, Scanner, and Other IT Product Here
All Products
Autodesk Structural Bridge Design: Solusi Cerdas untuk Kekuatan dan Keandalan Jembatan Anda
Autodesk SoftwareAutodesk Structural Bridge Design: Solusi Cerdas untuk Kekuatan dan Keandalan Jembatan AndaApa itu Autodesk Structural Bridge Design? Autodesk Structural Bridge Design adalah perangkat lunak yang dirancang untuk membantu insinyur sipil dan struktur...
Autodesk Navisworks: Membangun Masa Depan dengan Kolaborasi dan Simulasi Cerdas
Autodesk SoftwareAutodesk Navisworks: Membangun Masa Depan dengan Kolaborasi dan Simulasi CerdasApa itu Autodesk Navisworks? Autodesk Navisworks adalah perangkat lunak yang membantu dalam manajemen proyek konstruksi dengan memungkinkan peninjauan model 3D secara...
Autodesk Point Layout: Reduce construction site errors
Autodesk SoftwareAutodesk Point Layout: Reduce construction site errorsDeskripsi Autodesk Point Layout adalah solusi canggih yang dirancang untuk mengurangi kesalahan di lokasi konstruksi. Dengan memanfaatkan teknologi ini, pekerja dapat menempatkan titik-titik...
Autodesk ReCap Pro
Autodesk SoftwareAutodesk ReCap Pro Solusi Pemrosesan Data 3D yang Efisien untuk Proyek AndaDeskripsi Autodesk ReCap Pro adalah perangkat lunak canggih yang dirancang untuk memproses dan mengelola data 3D dari pemindaian laser dan foto, sehingga memudahkan profesional...
Autodesk BIM Collaborate: Solusi Terbaik untuk Kolaborasi BIM
Autodesk SoftwareAutodesk BIM Collaborate: Solusi Terbaik untuk Kolaborasi BIMDeskripsi Optimalkan manajemen model konstruksi Anda dengan cara yang lebih cerdas dan efisien. Automatisasikan deteksi benturan (clash detection), pusatkan desain untuk tim yang bekerja...
APC Smart-UPS On-Line, 2200VA, Tower, 230V (SRT2200XLI)
APC UPSAPC Smart-UPS On-Line, 2200VA, Tower, 230V (SRT2200XLI) Product APC Smart-UPS On-Line, 2200VA, Tower, 230V, 8x IEC C13+2x IEC C19 outlets, SmartSlot, Extended runtime, Rail kit excluded SRT2200XLI DocumentProduct DatasheetUser guideThis product is part of the...
APC Smart-UPS On-Line, 5kVA, Tower, 230V – (SRT5KXLI)
APC UPSAPC Smart-UPS On-Line, 5kVA, Tower, 230V, 2x NEMA L6-20R+2x NEMA L6-30R outlets, Network Card+SmartSlot, Extended runtime, Rail kit excluded SRT5KXLI Product APC Smart-UPS On-Line, 5kVA, Tower, 230V, 2x NEMA L6-20R+2x NEMA L6-30R outlets, Network...
APC Smart-UPS On-Line, 3kVA, Tower, 230V – (SRT3000XLI)
APC UPSAPC Smart-UPS On-Line, 3kVA, Tower, 230V, 8x IEC C13+2x IEC C19 outlets, SmartSlot, Extended runtime, Rail kit excluded SRT3000XLI Product APC Smart-UPS On-Line, 3kVA, Tower, 230V, 8x IEC C13+2x IEC C19 outlets, SmartSlot, Extended runtime, Rail kit excluded...
APC Smart-UPS On-Line, 6kVA/6kW, Tower, 230V, 6x C13+4x C19 IEC outlets, Network Card+SmartSlot, Extended runtime, W/O rail kit SRT6KXLI
APC UPSAPC Smart-UPS On-Line, 6kVA/6kW, Tower, 230V, 6x C13+4x C19 IEC outlets, Network Card+SmartSlot, Extended runtime, W/O rail kit SRT6KXLI Product APC Smart-UPS On-Line, 6kVA/6kW, Tower, 230V, 6x C13+4x C19 IEC outlets, Network Card+SmartSlot, Extended runtime,...
APC Smart-UPS On-Line, 10kVA/10kW, Tower, 230V/400V, 6x IEC C13+4x IEC C19 outlets, Network Card+SmartSlot, Extended runtime, Rail kit excluded SRT10KXLI
APC UPSAPC Smart-UPS On-Line, 10kVA/10kW, Tower, 230V/400V, 6x IEC C13+4x IEC C19 outlets, Network Card+SmartSlot, Extended runtime, Rail kit excluded SRT10KXLI Product APC Smart-UPS On-Line, 10kVA/10kW, Tower, 230V/400V, 6x IEC C13+4x IEC C19 outlets, Network...
APC Smart-UPS Ultra On-Line 15ft Extension Cable for SRTL 5K 180V XBP SRTL006
APC UPSAPC Smart-UPS Ultra On-Line 15ft Extension Cable for SRTL 5K 180V XBP SRTL006Product APC Smart-UPS Ultra On-Line 15ft Extension Cable for SRTL 5K 180V XBP SRTL006 Documents Product Datasheet Spesifikasi APC Smart-UPS Ultra On-Line 15ft Extension Cable for SRTL...
APC Smart-UPS Ultra On-Line 5KVA PDU 208V (2)L6-30 (2)L6-20 Pigtail SRTL005
APC UPSAPC Smart-UPS Ultra On-Line 5KVA PDU 208V (2)L6-30 (2)L6-20 Pigtail SRTL005Product APC Smart-UPS Ultra On-Line 5KVA PDU 208V (2)L6-30 (2)L6-20 Pigtail SRTL005 Documents Product Datasheet User guide Spesifikasi APC Smart-UPS Ultra On-Line 5KVA PDU 208V (2)L6-30...