In version 11, the configuration of AcuSensor has been simplified and does not require you to configure a password for the sensor. Acunetix will automatically create a secure password for the sensor of each Target. Because of this, the sensor can only be used on the Target it was downloaded from.
In Acunetix v11, the AcuSensor password is automatically created for each Target. You do not need to specify the password yourself.
Being able to scan a website or web application quickly is certainly important, however, a fast scan isn’t always the desired outcome. There are cases where you might be scanning a web application on a web server with very limited resources (especially when scanning web applications on embedded devices), or perhaps you are scanning a […]
By default, Acunetix (on premise) will install and configure itself to run on localhost, port 3443. This configuration is suitable if you are using Acunetix on your own, however, you will need to adjust this default configuration if you intend on using Acunetix organization-wide. Fortunately, it’s easy to configure Acunetix to be accessible from another […]
When configuring a Target, you sometimes need to configure login details to the web application. This allows Acunetix to check the restricted areas in your web application. There are two types of authentication that can be done with a web site – Form-based authentication and HTTP Authentication. Form-based authentication is the most popular form of […]
If you are a Firefox user, you might have seen TLS/SSL warnings when trying to access the Acunetix (on-premises) web console from Firefox. This occurs because Firefox does not recognize the self-signed Acunetix root certificate authority created upon installation. It’s important to note that Firefox, unlike other browsers such as Microsoft Edge or Google Chrome, […]
Most Targets that you will be scanning using Acunetix will have a restricted area which requires authentication. When configuring the Target, you can configure form-based authentication from the Target’s settings > Site Login. Here you need to choose between auto-login and pre-recorded login sequence. You should initially configure Acunetix to “Try and auto-login into the […]
When installing the AcuSensor in your .NET Web Application, you might encounter the following error: Failed to install sensor in site: “<path to site>”. Reason: Previous version of AcuSensor detected on the site. Please remove it using AcuSensor .NET Injector. This error is caused when you are using .NET AcuSensor Manager v2.0 to install the […]
I have received an email notification about a vulnerability detected by AcuMonitor. What should I do? Some vulnerabilities can only be detected by using an intermediary service. Acunetix uses AcuMonitor as the intermediary service, allowing the scanner to detect multiple types of out-of-band vulnerabilities such as Blind XSS, XML External Entity (XXE) and Server Side […]
The majority of web applications today make use of a login mechanism where the user must supply a set of credentials in order to navigate to authenticated areas of the web application. This allows access to restricted content and content that is customised to the logged in user. Most of the interesting data for a […]