Acunetix

Combating the Web Vulnerability Threat

About Acunetix

Securing the web applications of today’s businesses is perhaps the most overlooked aspect of securing the enterprise. Web application hacking is on the rise with as many as 75% of cyber-attacks done at web application level or via the web. Most corporations have secured their data at the network level, but have overlooked the crucial step of checking whether their web applications are vulnerable to attack. Web applications — which often have a direct line into the company’s most valuable data assets — are online 24/7, completely unprotected by a firewall and therefore easy prey for attackers.

 

 

Acunetix was founded with this threat in mind. It was understood that the only way to combat website hacking was to develop an automated tool that could help companies scan their web applications to identify and resolve exploitable vulnerabilities. In July 2005, Acunetix Web Vulnerability Scanner was released – a heuristic tool designed to replicate a hacker’s methodology to find dangerous vulnerabilities — like SQL injection and cross site scripting — before hackers do. Acunetix WVS brings an extensive feature-set of both automated and manual penetration testing tools, enabling security analysts to perform a complete vulnerability assessment, and repair detected threats, with just the one product.

The Acunetix development team consists of highly experienced security developers, all with extensive development experience in network security scanning software prior to working on Acunetix WVS. The management team is backed by years of experience in marketing and selling security software.

Acunetix is a privately held company with its offices in Malta and the UK. It is a Microsoft Certified Partner and forms part of a group of software companies which includes 2X Software, a developer of thin client software, and 3CX, a developer of IP PBX software for Windows.

Product

Acunetix Web Vulnerability Scanner (WVS)

Acunetix Web Vulnerability Scanner is a tool designed to discover security holes in web applications that attackers could abuse to gain access to a business’ systems and data. With Acunetix WVS websites can be regularly checked for vulnerabilities such as SQL injection and Cross Site Scripting. The scanner ships with many innovative features such as: AcuSensor Technology, automatic JavaScript analyzer, Visual macro recorders and extensive reporting facilities, which include various compliance reports.

 

Innovative features of WVS

 

Acunetix has pioneered web application security scanning and has established an engineering lead in website analysis and vulnerability detection with the following innovative features.

·       Acunetix AcuSensor Technology allows accurate scanning with low false positives, by combining black box scanning techniques with feedback from its sensors placed inside the source code

·       An automatic JavaScript analyzer for security testing of AJAX and Web 2.0 applications

·       Industry’s most advanced and in-depth SQL injection and Cross-Site Scripting (XSS) testing

·       Login Sequence Recorder makes testing web forms and password protected areas easy

·       Multi-threaded and lightning fast scanner able to crawl hundreds of thousands of pages without interruptions

·       Acunetix DeepScan understands complex web technologies such as REST, SOAP, XML, AJAX and JSON

 

Useful links for Acunetix

Pricing

Register for Your Free 14-Day Online Scan

Download 14 Day Trial

Download Acunetix Vulnerability Scanner Brochure

 

Website Security knowledge

Cross-site Scripting (XSS) Attack

SQL Injection: What is it?

Better DOM-based XSS Vulnerabilities Detection

CSRF Attacks, XSRF or Sea-Surf – What They Are and How to Defend Against Them

Directory Traversal Attacks

PHP / SQL Security – The Big Picture

Web Services Security – The Technology and its Concerns

WordPress Security: Top tips to secure your WordPress Application

AJAX security: Are AJAX Applications Vulnerable to Hack Attacks?

PCI Compliance – Securing Both Merchant and Customer Data