Managing Notifications

In Acunetix 360, you can view all the configured Notifications from the Manage Notifications window. You can Create, Clone, Edit and Delete existing Notifications.

You can also configure a Notification to inform email recipients, including recipients external to Acunetix, following a Scan Completed event. This is so you and your users can be notified instantly about the status of a web application security scan, or when specific vulnerabilities are identified on the web applications you are scanning.

if_Gnome-Dialog-Information-64_55568.png

Information

The email and SMS notifications in Acunetix 360 allow you to be notified about urgent items. For example, you can be notified via SMS when one or more critical vulnerabilities are identified on a live website.

Not all web applications and vulnerabilities have the same criticality. The urgency of fixing a cross-site scripting (XSS) vulnerability on a staging website is different from that of a cross-site scripting vulnerability on a live website.

  • The live website needs immediate attention because it is available to the public and attackers can easily find vulnerabilities and exploit them.
  • On the other hand, finding vulnerabilities on a staging website is expected. After all, that is the purpose of scanning a staging website for vulnerabilities; to identify them before the code is migrated to a live environment.

New Notification Fields

This table lists and explains the columns in the New Notifications window.

Column

Description

Name

This is the name of the Notification. The default Notification names are descriptive, corresponding to the Event reported. When you create your own notification, you can enter whatever name you wish.

Status

This indicates whether the Notification is Enabled or Disabled.

Event

This states the event that the Notification reports. There options are:

  • New Scan
  • Out-of-date Technology
  • Scan Cancelled
  • Scan Failed
  • Scan Completed
  • Scheduled Scan Launch Failed

Group

This is an option that enables users to get one summary notification instead of separate notifications within a specified period. When the option is enabled, a slider is displayed, which ranges from 10 to 240 minutes.

The options are:

  • Disabled
  • Enabled

Scope

This indicates that the notification will be sent if the scan is related to the website or website group. The options are:

  • Any Website – Notification definitions will be applied to all websites
  • Website Group – Notifications will be sent if the Scan is related to any Website in the group
  • Acunetix 360 Websites
  • Default
  • Local Websites
  • Website – Notifications will be sent if the Scan is related to the selected website

When the Website Group or Website options are selected, a new field with that name is displayed below Scope.

Email Recipients

This is a list of the names and email addresses of the recipients that will receive an email notification.

Add Attachment Report

This is a field that is displayed when the Scan Completed option is selected in Event.

It enables you to specify various reports by adding information on report types and format. Reports will be sent as email attachments. Click New Report to select report type and Clear to delete it.

SMS Recipients

This is a list of the names and phone numbers of the recipients that will receive an SMS notification.

Excluded Recipients

This is a list of the names of recipients that will not receive notifications related to this rule.

Integration Endpoints

Enter the Integration Endpoint name if required. This is a list of configured integration, and is currently only available if you select the New Scan option in the Event dropdown, and only for Slack integrations.

Add Filter

This is a field that is displayed when the Scan Completed option is selected in Event.

It enables you to specify the filtering options for vulnerabilities by adding filters. Vulnerabilities matched by the filter will be sent in the notification. Click New Filter to select filter specifications and Clear to delete it.

Filter fields are Field, Operator and Value.

Filters

Email and SMS notifications are sent for selected events and filters will not apply to them. Integrations are sent according to the filters you specify. If you do not specify any filters, all detected issues are sent to the integrations you selected.

You can create more effective and dynamic filters with this option.

This table lists and explains the fields in the Field column of Add Filter.

Column

Description

Severity

Specify a Severity level. Clarify this level with the help of logical operators.

Is Confirmed

Use the Is Confirmed filter if you want to be notified of verified issues.

Certainty

Provide a Certainty percentage (between 0-100) according to the accuracy of the issue. Clarify the precision with the help of logical operators.

How to Create a Notification
  1. Log in to Acunetix 360.
  2. From the main menu, click Notifications then New Notification.

  1. In the Name field, enter the name of the new notification.
  2. In the Status field, select enable or disable.
  3. From the Event dropdown, select the relevant option.
  4. In the Group field, select enable or disable.
  5. From the Scope field, select the relevant option.
  6. In the Email Recipients field, click and enter a recipient. If you have selected Scan Completed from the Event dropdown (above), you can add a recipient that is not registered and confirmed.

  1. In the SMS Recipients field, click and enter a recipient.
  2. In the Excluded Recipients field, click and enter a recipient.
  3. If you selected Scan Completed from the Event dropdown (above), the Add Filter option is activated. Set your filters if required.

  1. (In the Integration Endpoints field, select a Jira integration, if required.)
  2. Click Save.
How to Clone a Notification
  1. Log in to Acunetix 360.
  2. From the main menu, click Notifications then Manage Notifications. The Notifications window is displayed.
  3. Next to the notification you want to clone, click Clone. The New Notification window is displayed.
  4. In the Name field, enter a name.
  5. Edit the remaining fields, if relevant. (See How to Create a Notification)
  6. Click Save.
How to Edit a Notification
  1. Log in to Acunetix 360.
  2. From the main menu, click Notifications then Manage Notifications. The Notifications window is displayed.
  3. Next to the notifications you want to edit, click Edit. The Update Notification window is displayed.

  1. In the Name field, edit the name.
  2. Edit the remaining fields, if relevant. (See How to Create a Notification)
  3. Click Save.
How to Delete a Notification
  1. Log in to Acunetix 360.
  2. From the main menu, click Notifications then Manage Notifications. The Notifications window is displayed.
  3. Next to the notification you want to delete, click Delete. The Delete Notification dialog is displayed.
  4. Click Delete.
How to Configure a Notification to Email a Report After a Scan
  1. Log in to Acunetix 360.
  2. From the main menu, click Notifications, then Manage Notification. The Notifications window is displayed.
  3. For any notification with an Event of Scan Completed, click Edit. The Update Notification window is displayed.

  1. If required, in the Email Recipients field, enter additional registered recipients or a valid email address of an external recipient.
  2. In the Add Attachment Report field, click New Report. New Report and Format dropdowns are displayed.
  3. From the Report and Format dropdowns, select an attachment(s) report to add to the email notification (a maximum of three report types is allowed).
  4. Click Save.
  5. The specified reports following configured scans that are completed will now be sent as email attachments in the email notification sent to the specified recipients, as illustrated.

 

« Back to the Acunetix Support Page