Deploying AcuSensor - Introduction
Acunetix AcuSensor increases the accuracy of an Acunetix scan by improving the crawling, detection and reporting of vulnerabilities, while decreasing false positives. Acunetix AcuSensor can be used on .NET (including .NET core), JAVA, PHP, and Node.js web applications.
🔍 AcuSensor Resource Consumption
AcuSensor has only a very minimal impact on resources on the Target machine — less than 1% in lab test results.
NOTE: Deploying AcuSensor into your Target is optional. Acunetix is still best in class as a black-box scanner, but AcuSensor improves accuracy and vulnerability results when scanning your web applications.
The unique Acunetix AcuSensor Technology identifies more vulnerabilities than a black-box Web Application Scanner while generating less false positives. In addition, it indicates exactly where vulnerabilities are detected in your code and reports debug information.
Acunetix AcuSensor requires a sensor to be deployed on your website. This sensor is generated uniquely for each website for security reasons. From the configuration of each Target, scroll to the AcuSensor panel, and toggle the AcuSensor option. From here, you can download the AcuSensor generated for the Target. Choose the sensor you require - depending on the web technology used on your site - and proceed with the deployment steps described in the following sections.
Use one of the following links for instructions on how to install AcuSensor on your website.
- How to install the PHP AcuSensor
- How to install the .NET AcuSensor
- How to install the JAVA AcuSensor
- How to install the Node.js AcuSensor
Before deploying AcuSensor, you need to give some attention to the port number that Acunetix will use for incoming AcuSensor data. You will also need to ensure that the hostname (or ip address) that the AcuSensor agent uses to send AcuSensor data can be resolved by your web application machine.
By default, Acunetix will use port 7880 to listen for incoming AcuSensor data, and the hostname used by the deployed AcuSensor agent will be the one configured during the initial installation of Acunetix.
You can adjust these settings from the AcuSensor Bridge panel in the General Settings page:
You will need to ensure that:
- the Address field contains a hostname (or ip address) that the web application can resolve and use to reach your Acunetix installation
- the Port field contains a port number that has been correctly configured (generally using your router's port forwarding features) to send AcuSensor data into your Acunetix machine