Integrating Acunetix 360 with Mend SAST

The Invicti partnership with Mend allows you to retrieve Mend SAST scan results and view them in Acunetix 360 alongside the DAST scan results for your targets. To achieve this, you need to integrate Acunetix 360 and Mend SAST by mapping targets to Mend projects, then configure the scan settings/scan profile in Acunetix 360 for each connected target to retrieve Mend SAST scan results.

NOTE: The integration between Acunetix 360 and Mend SAST does NOT initiate a Mend SAST scan. Acunetix 360 will pull the latest SAST scan results from Mend for a mapped target and display the information in Acunetix 360 alongside the DAST scan results.

This document explains how to set up an integration between Acunetix 360 and Mend SAST. 

How to integrate Acunetix 360 with Mend SAST

To integrate Acunetix 360 with Mend SAST, first, ensure you have established the prerequisites listed below. Then, follow the steps in this section to obtain the activation key, and configure the integration in Acunetix 360.

PREREQUISITES:

  • A Mend account with read access to your organization's Mend projects and findings
  • Know which of your targets in Acunetix 360 map with your Mend projects

Step 1: Obtain the activation key

  1. Log in to your Mend account.
  2. Select Settings > Integrations.

  1. Select Invicti from the Third-Party Platforms section.

  1. Click Get Activation Key.

  1. Click the copy icon next to the Activation key.

You now have the activation key necessary to configure the integration in Acunetix 360. Continue with the instructions in step 2 below.

Step 2: Configure the integration in Acunetix 360

  1. Log in to Acunetix 360.
  2. Select Integrations > New Integration from the left-side menu.

  1. Scroll down to the Connections section and select Mend.

  1. On the New Mend Integration page, fill in the following required fields:
  • Enter a Name for the Mend connection. The name you provide will appear on the Manage Integrations page. If you intend to configure multiple Mend integrations, then the name will be important to help identify your different Mend connections.
  • Paste the Activation Key you copied from Mend.

  1. Click Validate Credentials.

  1. A 'Connection successful!' message appears at the top of the page. If you see an error message, this means there was a problem with the configuration. Ensure you have provided the correct activation key.

  1. In the Target Mapping section that appears, map your Acunetix 360 targets to your Mend projects:
  • Click the Target drop-down on the left and select a target to map to your Mend projects.
  • Click the Mend Projects drop-down on the right and select your Mend projects to map to the target you selected.
  • Click Add Mapping to add a new row to map another target to Mend projects. You can add as many target mappings as you need.

NOTE: Acunetix 360 does not verify the mapping between targets and Mend projects. Ensure you are mapping your Mend projects to the correct target. Accurate mapping will ensure that SAST results are related to the right target.

  1. When you have finished mapping targets, click Save.

Your Acunetix 360 and Mend accounts are now integrated. The newly created integration is now listed on the Integrations page.  

IMPORTANT: Before running a DAST scan, you need to configure the scan settings/scan profile to enable retrieval of Mend SAST scan results. Without this configuration, you won't be able to view the Mend SAST scan results alongside your DAST scan results in Acunetix 360.  

For information about how to configure the scan settings/scan profile, refer to Retrieving Mend SAST scan results.


« Back to the Acunetix Support Page