Introduction to the Acunetix standalone Login Sequence Recorder 

THIS DOCUMENT IS FOR: Acunetix Online

The Acunetix standalone Login Sequence Recorder (LSR) allows you to record a login sequence or business logic (BLR) to use with an internal agent. This is useful in situations where you need to use an internal agent to scan an internal target and the target contains a login mechanism.

What is an LSR?

An LSR is used to perform the following tasks during the crawling and scanning phases:

  • Access form-based password-protected areas.
  • Replay login actions to authenticate to the website or web application.
  • Restrict actions that might invalidate the session such as logout links.

NOTE: LSR restrictions should only be used for session invalidation. There are other target settings that can restrict paths for the scanner. For more information, refer to the crawling section of Configuring Targets.

What is a BLR?

A BLR allows you to:

  • Define multiple input sequences to permit the scanner to reach and test all variations of multi-step web forms or other web application workflows.
  • Define input sequences that fulfill particular constraints to reach parts of a web application, which an automated scanner would otherwise not be able to reach and test.

Recording an LSR or BLR for an internal target

When using internal agents with targets that contain login or business logic mechanisms, you need to use the Acunetix standalone Login Sequence Recorder rather than the LSR/BLR available in the Acunetix UI.

For information about how to install and use the Acunetix standalone LSR to record an LSR or BLR, refer to the following documentation:

« Back to the Acunetix Support Page