OWASP AppSensor defines a conceptual framework, methodology and guidance to implement intrusion detection and automated response into an existing application. Over 50 detection points have been described together with a number of response actions. A methodology will be presented to plan AppSensor implementations. The planning stage includes sensor selection and positioning, and determination of the appropriate type of response to block or mitigate attacks based on an analysis of business risk and other factors. A lightweight implementation will also be described for organisations wishing to pilot AppSensor in their applications.