Java Bytecode Scanner installation↑

The SandboxAQ Java Bytecode Scanner is a tool that complements the Java Tracer by providing information about the code under test. It scans the application bytecode in a JAR file or a set of class files and identifies all of the cryptographic call sites, as well as finds all strings that potentially contain hard-coded cryptographic values.

Requirements↑

Java 8 or higher

Download↑

The Java Bytecode Scanner is distributed as a .zip or .tar archive and can be downloaded from the AQtive Guard web interface:

Select Settings from the menu bar, then select Sensors
Locate the Java Bytecode Scanner and select Download.

If you’re using the on-premise AQtive Guard, the Java Bytecode Scanner is typically distributed with the on-premise package.

Visit our support portal if you have questions or need help.

Installation↑

When you extract the package, it creates a directory named java-static-scanner-VERSION that contains bin and lib subdirectories. For instance:

java-static-scanner-v2.1.1
├── bin
│   ├── java-static-scanner
│   └── java-static-scanner.bat
└── lib
    ├── asm-9.2.jar
    ├── gson-2.10.1.jar
    ├── java-static-scanner-v2.1.1.jar
    └── jcommander-1.81.jar