Skip to content

Notice

This guide is for the original release of AQtive Guard. For the current AQG SaaS platform, go to the AQtive Guard User Guide.

Java Bytecode Scanner installation

The SandboxAQ Java Bytecode Scanner is a tool that complements the Java Tracer by providing information about the code under test. It scans the application bytecode in a JAR file or a set of class files and identifies all of the cryptographic call sites, as well as finds all strings that potentially contain hard-coded cryptographic values.

Requirements

  • Java 8 or higher

Download

The Java Bytecode Scanner is distributed as a .zip or .tar archive and can be downloaded from the AQtive Guard web interface:

  1. Select Settings from the menu bar, then select Sensors
  2. Locate the Java Bytecode Scanner and select Download.

If you’re using the on-premise AQtive Guard, the Java Bytecode Scanner is typically distributed with the on-premise package.

Visit our support portal if you have questions or need help.

Installation

When you extract the package, it creates a directory named java-static-scanner-VERSION that contains bin and lib subdirectories. For instance:

java-static-scanner-v2.1.1
├── bin
│   ├── java-static-scanner
│   └── java-static-scanner.bat
└── lib
    ├── asm-9.2.jar
    ├── gson-2.10.1.jar
    ├── java-static-scanner-v2.1.1.jar
    └── jcommander-1.81.jar