Jira is a popular issue tracker platform. Vulnerability management teams may use it to manage tasks together with other departments. You can easily integrate Acunetix with Jira (both the on-premise and online Jira versions).Note: Before you proceed any further, ensure that you install the latest version of Acunetix, which you can download from https://www.acunetix.com/fullver. Issue tracker integration is only available for Acunetix Premium and Acunetix 360 license holders. This article covers integration in Acunetix Premium.
Step 1. Create a New Jira Project (Optional)
If you need to create a Jira project before integrating with Acunetix, first, register a new account on the platform and click on Try it Free. The platform will redirect you to the account creation page, so you can start using Jira Cloud.
After you set up the account, the platform will send a verification email to your email address. After you complete the verification step, you need to provide extra details about the way that you plan to use your instance. The default view of Jira will change depending on the preferences that you selected. You can skip this step to use the default view.
After completing the above steps, you should see the following screen.
Click on the Bug Tracking tile, enter a project name, and click on the Create button. You can also change the default template from this page.
You have now successfully created an online Jira instance and created your first issue tracking project.
Step 2. Create an API Token
To communicate with Acunetix, you need to create a new API token using the Jira identification management portal (https://id.atlassian.com/manage/api-tokens).
After you log in, navigate to the API tokens page. Create a label for the API token and click on the Create button.
Copy the generated token to the clipboard to use it in the next step.
Step 3. Integrate with Acunetix
To connect a Jira instance with Acunetix, you need to navigate to the Settings page. Configuration options are available on the Issue Trackers tab.
Click on the Add Issue Tracker button. Select Jira from the drop-down list.
Authentication can be based on the Jira API token. This is the only supported method if you are using Jira Online. If you are using older versions of Jira, you can choose to use the deprecated Cookie-Based or HTTP Basic Authentication methods.
We will assume that the Jira API token is used. You can now populate the API Token field with the token generated from the previous section.
Click on the Test Connection button to test your connection to Jira. After Acunetix verifies the connection, click on the OK button to save the configuration.
Step 4. Push Vulnerabilities to Jira Online
After you configure the Jira issue tracker in Acunetix, you can start sending vulnerabilities to Jira. This will automatically create issues in Jira that will contain information about the security vulnerability, which developers can use to fix the issue.
You first need to configure the newly configured issue tracker for your target. On the target configuration page, you can select the issue tracker on the Advanced tab.
The next step is to start sending target vulnerabilities to Jira. Navigate to the Vulnerabilities page and apply filters for your specific target. As an example, we will use http://testphp.vulnweb.com.
After you select the vulnerabilities, click on the Send To Issue Tracker button. Acunetix pushes vulnerabilities to the configured repository and you can view them using the Open issues view in Jira.
Vulnerability details contain information, which helps developers to fix the issues.
For more information on setting up Jira with Acunetix, contact our support team: [email protected].