Acunetix Web Vulnerability Scanner allows securing the website quickly and efficiently. Website security is overlooked by securing the enterprise and is the first priority for the organization. Web applications don’t provide protection against web application attacks and are likely to have undiscovered vulnerabilities. Acunetix Web Vulnerability Scanner automatically checks web applications for SQL Injection, XSS & other web vulnerabilities.
It has pioneered the Automated Web Application Security Testing field by obtaining a website structure analysis and vulnerability detection. Multi-threaded and lightning fast scanner crawls hundreds of pages without interruptions. It allows accurate scanning to reduce the false positive rate by combining black box scanning techniques.
Features of Acunetix Web Vulnerability Scanner
It allows identifying more vulnerability and designed for further reduction of false positives. It also indicates the code where the vulnerability was found. An agent must be installed on your website to enable communication between Acunetix Web Vulnerability Scanner and AcuSensor.
This allows Acunetix Web Vulnerability Scanner to detect vulnerabilities depending on the reports provided. A scan or notification email is sent to the user if the vulnerability is identified after the scan is completed.
It performs a port scan against the web server hosting the scanned website. If open ports are found, Acunetix Web Vulnerability Scanner will perform network level security checks against the network service running on that port.
It is a scanner which locates web servers within a given range of IP addresses. If a web server is found, the scanner will display the response header of the server and the web server software.
This scanner identifies the active sub domains of a top-level domain. It can be configured to use the target’s DNS server or any other DNS server specified by the user.
This injector is an automated database data extraction tool with which manual tests analyze SQL injections reported during a scan.
It creates, analyzes, and edits client HTTP requests and server responses. It also contains an encoding and decoding tool to encode or decode text and URL’s.
This acts as a proxy and allows capturing and modifying HTTP traffic between an HTTP client and a web server. Traps can be enabled, added or edited to capture traffic before it is sent to the web server.
It conducts fuzzing tests to audit the web application’s handling of invalid and unexpected random data which also creates input rules for further testing.
This tool uses two predefined text files containing a list of common usernames and passwords.
It generates reports of scan results in a printable format. The Consultant Version of Acunetix Web Vulnerability Scanner allows customization of the generated report.
It is an automatic security audit of a website. It automatically analyzes the website to build the site’s structure. This process enumerates all files and ensures that all the files in website are scanned. The results of a scan are displayed in the Alert Node tree which includes all vulnerabilities found within the website.
- Supports HTML5 websites.
- Detects DOM-based XSS and Blind XSS vulnerabilities.
- Detects Server Side Request Forgery (SSRF), XML External Entity (XXE), Mail Header Injection and Host Header-based vulnerabilities.
- Detects SQL Injection, XSS and other vulnerabilities in web applications.
Detects vulnerabilities in JSON and XML data and HTTP HOST Headers.