Desktop Tools
File Managers
Editors
Utilities
HTML/XML
Email
PDF Tools
FTP
Browsers
Remote & Telnet
Network Tools
Internet
Graphics
Multi Media
Flash
Security
Recovery
Compression
Disk/Backup
System Tools
Maintenance
Databases
Education
Administration
Development
PDA/SmartPhone
|
Firewalls, SSL and hardened networks are futile against web application hacking! Hackers are concentrating on web-based applications (shopping carts, forms, login pages, etc) - accessible 24/7 - and directly connected to your database back-ends with valuable data. Web applications are tailor-made, less tested than off-the-shelf software and likely to have undiscovered vulnerabilities that can be a recipe for disaster. Don't overlook Website security at your organization!
Acunetix is the leading web vulnerability scanner used by serious Fortune 500 companies and widely acclaimed to include the most advanced SQL injection and XSS black box scanning technology. It automatically crawls your websites and performs black box AND grey box hacking techniques which finds dangerous vulnerabilities that can compromise your website and data.
Acunetix tests for SQL Injection, XSS, XXE, SSRF, Host Header Injection and over 4500 other web vulnerabilities. It has the most advanced scanning techniques generating the least false positives possible. Simplifies the web application security process through its inbuilt vulnerability management features that help you prioritize and manage vulnerability resolution.
- In depth crawl and analysis - automatically scans all websites
- Highest detection rate of vulnerabilities with low false positives
- Integrated vulnerability management - prioritize & control threats
- Integration with popular WAFs and Issue Trackers
- Free network security scanning and Manual Testing tools
- Available on Windows, Linux and Online
New features 13 build 13.0.200508159
New Features
- Business Logic Recorder - used to record logic used in multi-step forms
- Export to Citrix WAF
- Support for the Azure DevOps Services issue tracker
- CVSS3.1 score for most Acunetix vulnerabilities
- Targets can now be exported to CSV
- A new graph in the dashboard showing average vulnerabilities per target
New Vulnerability Checks
- New check for Server-Side Template Injection (SSTI) in ASP.NET Razor
- New check for Oracle BI AMF Deserialization RCE (CVE-2020-2950)
- New check for Possible Cross Site Scripting via jquery.htmlPrefilter() (CVE-2020-11023)
- New check for Stored XSS in WP theme Onetone (CVE-2019-17230 and CVE-2019-17231)
- Updated detection of phpinfo pages
- New checks in WordPress Core and WordPress plugins
Updates
- Manual intervention (used for CAPTCHAs, OTP, etc.) is now using the integrated (web-based) LSR
- As a result of the previous update, manual intervention is now available on Linux
- Improved error reporting for network scans aborted due to network errors
- Vulnerability alerts updated to show important information at the top
- Updated the Github issue tracker to support personal access token (PAT) authentication
- Improved reporting of paused scans in the UI
- Improved UI message when the user triggers a scan which is not allowed due to manual intervention
- API documentation can now be downloaded from within the Acunetix UI
- Added support for popup windows in the Login Sequence Recorder
- Improved handling of large import files
- Improved handling large requests/responses generated from import files
- Decreased false positives reported for possible username or password disclosure
- Truncated large vulnerability alerts when sending to the Jira issue tracker
Fixes
- Fixed the incorrect email address used for monthly update emails
- Fixed an AcuMonitor UI notification to link to a corresponding vulnerability
- Fixed an issue causing vulnerability checks to not be able to send empty values
- Fixed a number of crashes
- Fixed an issue causing ASP.NET sites to be processed as ASP sites
- Fixed 2 issues when using Swagger import files
- Improved handling of txt import files that use an incorrect import format
- Fixed a session fixation false positive
- Fixed a UI issue when configuring custom cookies
- Trend charts where not being updated for user accounts
- Fixed an issue in excluded hours
- Fixed a Client Certificate Not Set message that was incorrectly reported
Please contact BTSoftware for pricing.
|
|
|
News:
[ 20220916 ] BTSoftware BV is now reseller of SoftMaker
BTSoftware BV has partnered up with SoftMaker
[ 20211223 ] BTSoftware and Parasoft reconfirm delivery agreements
BTSoftware has a long-standing relation with Parasoft.
[ 20211217 ] BTSoftware BV officially partnered up with Lansweeper
Lansweeper continues to be available through BTSoftware since 2011
[ 20211013 ] BTSoftware BV has added 7Edit to the product catalog
7Edit now available through BTSoftware BV
[ 20211013 ] BTSoftware BV has added AOMEI Backupper to the product catalog
AOMEI Backupper now available through BTSoftware BV
[ 20210205 ] BTSoftware BV has partnered up with Seagull Scientific
BTSoftware BV and Seagull Scientific are now partners
[ 20181231 ] BTSoftware BV is now partner of Unified Compliance
BTSoftware BV and Unified Compliance are now partners
[ 20180215 ] BTSoftware BV has partnered up with IronSoftware
BTSoftware BV and Iron Software are now partners
More ...
|