VIDEO: Exploring the capabilities of Acunetix WVS Login Sequence Recorder; automating dynamic web applications crawling

The Acunetix WVS Login Sequence Recorder can be used for many other tasks rather than just to scan password protected areas. If used appropriately it will help you in automating most of the crawling process. Therefore the Acunetix WVS Login Sequence Recorder can be used to:

- Configure the crawler to crawl a pre-defined path of a website or web application

- Submit specific input (forms training) when accessing web pages and web forms which require specific input

- Specify which pages need manual intervention during an automated scan, because of the unique and random input they require each time they are accessed, such as forms which utilize CAPTCHA and Single sign on forms

In this video, one can see how the Acunetix WVS Login Sequence Recorder was used to help automate most of the crawling process, and crawl all of the web application. The website included:

a) A set of three forms which unless the details are filled correctly, the user cannot proceed from one form to the other, and finally to the success page. The Acunetix WVS Login Sequence Recorder was used to record this pre-defined crawling sequence, including submitting the required details automatically.

b) A password protected section. The Acunetix WVS Login Sequence Recorder was used to simulate a login automatically, and was also configured to automatically detect when the logged in session is invalidated or times out, so if it happens, the crawler will re-login automatically to continue crawling and scanning the password protected section of the web application.

c) A CAPTCHA and Single Sign on Form. Because of the unique and random input such pages require, they cannot be automatically scanned. If it was possible to automatically submit details to such forms, then the scope of CAPTCHA and Single Sign On technology would be nullified. Therefore the Acunetix WVS Login Sequence Recorder was used to configure the crawler and scanner to notify the user each time one of these pages are accessed, to allow the user to enter the required input.

The Acunetix WVS Login Sequence Recorder can be used for many other tasks rather than just to perform a web security audit of a website's password protected area, and -- if used correctly -- it will help you automate most of the crawling process. The Acunetix WVS Login Sequence Recorder can also be used to:

Configure the crawler to crawl a pre-defined path from a website or web application
Submit specific input (forms training) when accessing web pages and web forms which require specific input to function correctly
Specify which pages need manual intervention during an automated scan, because of the unique and random input they require each time they are accessed, such as forms which utilize CAPTCHA and Single sign on forms

In this video, one can see how the Acunetix WVS Login Sequence Recorder was used to help automate most of the crawling process, and successfully crawl all of the web application. The website scanned in this demonstration consisted of:

A set of three forms which unless the details are filled correctly, the user cannot proceed from one form to the other, and finally to the success page. The Acunetix WVS Login Sequence Recorder was used to record this pre-defined crawling sequence, including submitting the required details automatically.
A password protected section. The Acunetix WVS Login Sequence Recorder was used to simulate a login automatically, and was also configured to automatically detect when the logged in session is invalidated or times out, so if it happens, the crawler will re-login automatically to continue crawling and scanning the password protected section of the web application.
A CAPTCHA and Single Sign-on Form. Because of the unique and random input such pages require, they cannot be automatically scanned. If it was possible to automatically submit details to such forms, then the scope of CAPTCHA and Single Sign On technology would be nullified. Therefore the Acunetix WVS Login Sequence Recorder was used to configure the crawler and scanner to notify the user each time one of these pages are accessed, and to allow the user to enter the required input.

Click here to watch the high quality version of this video

Web Security Zone

Responding to DoS attacks at the web layer

WordPress Caching Plugins Remote PHP Code Execution

WordPress Attack Vectors and Open Amazon S3 Buckets Identified by Acunetix WVS

The Risks Associated with Third-Party Software Components

What Happens when you can’t Find Every Web Vulnerability?

Is Your Security Appliance Hackable?

Scanning a Template-based Website Using Acunetix WVS

Docs

Acunetix WVS Update 20130308 – New Security Tests

Unable to Download Error Whilst Trying to Update Acunetix WVS

Finding Broken Links Using Acunetix WVS

FAQs

Acunetix Web Vulnerability Scanner Command Line Operation

Configuring Automatic Session Detection in Acunetix WVS

How to Scan a Shopping Cart with an Automated Security Scanner

News

The US National Vulnerability Database was Hacked and Infected with Malware

Cyber-Espionage Now Considered a Direct Threat to American Economic Interests

Acunetix Support Availability During the Festive Season

Subscribe for Updates

Join us on facebook

Leave a Reply Cancel reply