Integrating Acunetix in the SDLC
Acunetix is not just a web vulnerability scanner – it is a complete web vulnerability assessment and vulnerability management platform. In addition to built-in web and network vulnerability management functions, you can also integrate Acunetix in your SDLC so that your teams can use their favorite tools and web and network security scans are fully automated.
Integrating with Issue Trackers
When you integrate Acunetix with an issue tracker, every vulnerability that is found by the scanner is automatically converted to an issue in the external tracker. Acunetix can not only create such issues but also prioritize them based on vulnerability assessment and assign them to the right teams depending on target ownership.
Acunetix Premium supports the following issue trackers:
- Jira
- Microsoft TFS (Azure DevOps)
- GitHub
- GitLab
- Bugzilla
- Mantis
Integrating with CI/CD Pipelines
The best way to use Acunetix when developing your own web applications is to include it in your DevSecOps (or SecDevOps) practices. Your CI/CD software should include security testing in the pipelines just as it includes functional testing.
One of the most popular CI/CD solutions in the world is Jenkins. You can integrate Acunetix Premium with Jenkins using the Jenkins plugin. You can trigger full or specific Acunetix scans from your Jenkins pipelines. You can also configure Jenkins to fail a build and optionally abort the scan as soon as a specific threat level is reached.
Additional Enterprise Integrations
The Acunetix 360 enterprise solution further extends the scope of Acunetix integrations. In addition to providing a wider range of integrations, it also provides more integration options.
The following additional integrations are available in Acunetix 360:
Vulnerability (issue) tracking systems:
- FogBugz
- Unfuddle
- ServiceNow
- Bitbucket
- Zapier
Continuous integration systems:
- Teamcity
- Bamboo
- Azure DevOps
- GitLab
Team messaging systems:
- Slack
