Get a demo
AppSec with Zero Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Support
Invicti Shark (IAST and SCA)

Deploying Invicti Shark agent for Java websites

This document is for:
Invicti Enterprise On-Demand, Invicti Enterprise On-Premises

Before deploying Invicti Shark, note the list of supported servers and frameworks.

Supported Servers and Frameworks

Java Runtime

For any Java Runtime environment that is implemented according to these specifications, the supported version are:

  • 7.x
  • 8.x
  • 11.x

Application Servers

  • Apache Tomcat:
  • v8.5.x
  • v9.x
  • v10.0.x
  • v10.1.x
  • Jetty
  • v9.4.x
  • v10.0.x
  • v11.0.x
  • WildFly v22.x and above
  • JBoss EAP
  • v7.3.x
  • v7.4.x
  • WebSphere Traditional
  • 8.5.5.18+
  • 9.0.5.5+
  • WebSphere Liberty 20.0.0.9+

Database Engines

  • MySQL
  • PostgreSQL
  • Microsoft SQL Server
  • DB2
  • Oracle
  • Sybase
  • SQLite
  • H2

Other Technologies

  • Axis
  • Freemarker
  • Velocity
  • Hibernate
  • J2EE - Servlet/JSP
  • Struts 2
  • Spring Web, Spring Boot
  • Spring Expression, Java Expression Language (EL)
  • JAX-RS and Jersey
  • JavaMail
  • JPA
  • java.beans
  • SAX, DOM
  • JNDI - LDAP

Invicti Shark enables you to carry out interactive security testing (IAST) in your web application in order to confirm more vulnerabilities and further minimize false positives.

For Invicti Shark to operate, you need to download an agent and deploy it on your server. Please note that this agent is generated uniquely for each target website for security reasons.

Use one of the following links for more details on how to deploy Invicti Shark for Java on the more common types of web application configuration.

Top Articles

What is Invicti?

Overview of Scan Policies

Scheduling Scans

Managing Integrations

Built-In Reports

Invicti Help Center

Our Support team is ready to provide you with technical help.

Go to Help Center This will redirect you to the ticketing system.