Acutenix Software
Acutenix AcuSensor Technology
INTERACTIVE APPLICATION SECURITY TESTING
Interactive Application Security Testing (IAST) with AcuSensor
The AcuSensor technology is an additional component of Acunetix. When you install and use AcuSensor, Acunetix becomes an IAST solution (grey-box scanner), not just a DAST scanner (black-box scanner). AcuSensor works with applications written in Node.js, PHP, Java (including the Spring framework), and ASP.NET.
Scan every file — even hidden ones
Most scans miss unlinked and hidden files because crawlers can’t see them. By deploying the IAST sensor within your runtime environment, you’ll gain enhanced visibility into the backend of your web application — this encompasses information about the files utilized by the web application as well as the routing within it. When web API routing is present, you can now discover APIs that are used by the web application.
With Acunetix, you can also import API definition files and links so you can perform tests on all your APIs that use a REST, SOAP, or GraphQL architecture.
Now, you can have confidence that every part of every page has been mapped and tested, which ultimately means bad actors have fewer ways to attack you.
What Are the Benefits of AcuSensor?
When you use AcuSensor, Acunetix gets additional information from the server back end, at the time when Acunetix is scanning the web application. This additional information introduces a number of improvements.
Ease of remediation
AcuSensor connects to the code interpreter or compiler (depending on the language) and it can identify the exact line of source code (for PHP) or point to a location in a stack trace (for Java and ASP.NET). With this information, your developers can fix vulnerabilities much faster.
Greater precision
AcuSensor can detect the following vulnerability types with 100% confidence: SQL Injection, code injection, CRLF injection, directory traversal, arbitrary file creation/deletion, email header injection, file upload, file inclusion, file tampering, PHP code injection, and PHP SuperGlobals overwrite.
TRUE INCREMENTALS
During an incremental backup, only files changed since the most recent backup are included. Its advantage is that it takes the least time to complete.
How Does AcuSensor Work?
The Acunetix scanner works by sending payloads and analyzing responses. When the web server receives the payload, it executes back-end code. If AcuSensor is installed, it analyzes the executed back-end code and provides the scanner with additional information.
You must install AcuSensor on the server for the selected language. AcuSensor is available for Linux/UNIX and Windows servers.
AcuSensor works directly with the PHP interpreter as well as Java and ASP.NET bytecode compilers.
You do not need to modify your source code at all to use AcuSensor. This is a major advantage over IAST offerings that require you to compile sensors within your code, often requiring you to change your build process or add software dependencies to your project.
When to Use IAST?
AcuSensor works best in specific environments and is not recommended for some of the others. To get the best out of AcuSensor, use it in the right environment.
You should install AcuSensor on your staging servers. This is the best place to perform IAST analysis.
You may install AcuSensor on virtual machines to perform IAST analysis as part of CI/CD pipelines. In this case, the AcuSensor installation would need to be done as part of the CI/CD pipeline.
We do not recommend installing AcuSensor on production servers. An active AcuSensor consumes some resources, so your production web applications may run slower.
AcuSensor is currently available for Node.js, PHP, ASP.NET, and Java. Let us know if you would like us to create an AcuSensor for your technology.
Services
Service ur Laptop or Notebook, PC, UPS, Printer, Scanner, and Other IT Product Here
All Products
Commvault HyperScale X
COMMVAULT SOFTWARECommvault HyperScale XCommvault HyperScale XSaat bisnis menavigasi kompleksitas lingkungan TI modern, kebutuhan akan perlindungan data yang skalabel, aman, dan berkinerja tinggi semakin besar. Commvault HyperScale X menawarkan pendekatan inovatif,...
Perlindungan Data Commvault
COMMVAULT SOFTWAREPerlindungan Data CommvaultApa itu Perlindungan Data Lengkap CommvaultDi dunia di mana data adalah sumber kehidupan bisnis, memastikan keamanan dan ketersediaan data merupakan hal yang tidak dapat ditawar lagi. Commvault Complete Data Protection...
Commvault: Manajemen dan Perlindungan Data
COMMVAULT SOFTWARECommvaultMerevolusi Manajemen dan Perlindungan DataCommvaultDi dunia yang serba digital saat ini, bisnis menghadapi tantangan besar dalam mengelola dan mengamankan data mereka di berbagai lingkungan. Commvault berada di garis depan, menawarkan solusi...
EcoStruxure Micro Data Center, with 15U rack – MDC15UR500ACI
APC UPSEcoStruxure Micro Data Center, with 15U rack, 500 W Panel AC cooling, 230V, 50/60Hz, 850H x 850W x 600D mm MDC15UR500ACIProductEcoStruxure Micro Data Center R-Series for rugged environments brings a plug-and-play solution to the application The IP 54 rated...
APC Easy Rack, 42U, Roof, Castors – ER8202
APC UPSAPC Easy Rack, 42U, Black, With Roof, Castors, Feet, 4 Brackets, and Side Panels, No Bottom, 1991H x 800W x 1000D mm ER8202ProductEasy Rack ER8202 is EIA-310 standard pre-assembled IT enclosure with essential features for fast, easy deployment in networking...
APC Easy Rack, 24U, Black, With Roof, Castors – ER6402
APC UPSAPC Easy Rack, 24U, Black, With Roof, Castors, Feet, 4 Brackets, and Side Panels, No Bottom, 1198H x 600W x 1000D mm ER6402ProductEasy Rack ER6402 is EIA-310 standard pre-assembled IT enclosure with essential features for fast and easy deployment in low to...
Symmetra PX 100kW Scalable to 250kW with Right Mounted Maintenance Bypass and Distribution SY100K250DR-PD
APC UPSSymmetra PX 100kW Scalable to 250kW with Right Mounted Maintenance Bypass and Distribution SY100K250DR-PDProductA high-performance, 3-phase, modular, scalable, power protection solution with industry-leading efficiency, capacity, and performance for medium to...
Symmetra PX 100KW Scalable to 250KW Without Maintenance Bypass or Distribution-Parallel Capable SY100K250D
APC UPSSymmetra PX 100KW Scalable to 250KW Without Maintenance Bypass or Distribution-Parallel Capable SY100K250DProductA high-performance, 3-phase, modular, scalable, power protection solution with industry-leading efficiency, capacity, and performance for medium to...
Eaton UPS Model Marine 9PHD
UPS EATONEaton UPS Model Marine 9PHDEaton UPS Model Marine 9PHDUPS Eaton Model Marine 9PHD adalah UPS online tiga fase dengan rating 30-200 kW. UPS ini tersedia dalam bentuk tower dan kompatibel dengan baterai UPS Lithium-ion, yang berukuran 40 persen lebih kecil...
Eaton UPS Model Power Xpert 9395P
UPS EATONEaton UPS Model Power Xpert 9395PEaton UPS Model Power Xpert 9395PUPS Eaton Model Power Xpert 9395P adalah UPS online tiga fase, dengan rating daya 250-1200 kVA. UPS ini tersedia dalam bentuk modular dan kompatibel dengan baterai UPS Lithium-ion, yang...
Eaton SmartRack Modular Data Center
EATONEaton SmartRack Modular Data Center SRP-2R-2C12SmartRack Pre-Configured, Self-Cooling Modular Data Center – 2x 44U Racks, 2x 12 kW AC UnitsSpesifications General Product Name Eaton SmartRack Modular data center Catalog Number SRP-2R-2C12 UPC 037332287823 Product...
DELL PowerEdge R450 (2x Xeon Silver 4309Y, 8x16GB, 2x960GB, 6×2.4TB)
DELL SERVERDELL PowerEdge R450 (2x Xeon Silver 4309Y, 8x16GB, 2x960GB, 6x2.4TB)Deskripsi 2x Intel Xeon Silver 4309Y 8x 16GB Memory 2x 960GB SSD SATA Mix Use 6Gbps 512 2.5in Hot-plug AG Drive 6x 2.4TB 10K RPM SAS ISE 12Gbps 512e 2.5in Hot-plug Hard Drive Dell HBA355i...