Secure your web applications and websites against vulnerabilities with Acunetix Web Vulnerability Scanner!
Hacking is on the rise and the number of victims is increasing every day. See how firewalls, SSL and locked-down servers can't stop your web applications and websites from being hacked but how Acunetix protects them with:
- The industries' most advanced and in-depth SQL injection and Cross Site scripting testing
- State of the art crawler technology which includes a client script analyzer engine
- Detailed reports that pinpoint security issues right down to the exact line of code
- Low False Positives
Can WVS read the source code of a remote server or does it need to be run on the same server as the web application to identify what line of source code is causing problems
Hi Dermot,
Thank you for showing interest in our security product.
By default, Acunetix WVS is a black box scanner, so it will only alert you where the vulnerability is, i.e. which parameter and on which file. Though you can use the AcuSensor Technology for grey box scanning. With the AcuSensor installed, Acunetix can tell you exactly in which line of code the vulnerability is.
I can install the tool on my desktop and based on the license run the scan a specific IP / web application. Do i need to provide user ID details also for the tool to crawl ?
Also does it look at DB level also ? And does it matter what is underlying OS / Hardware of the target
Hi Mani,
Thanks for showing interest in our software.
If you would like to scan the password protected area, then you have to create a Login Sequence (to specify a username and password) so that area is scanned as well. As regards target OS / DB etc, it doesn’t make a difference. It could be any software / version.
Is it for me as a victim of one of your customers possible to find out who purchased the copy of your product which is used to attack one of our websites, for example with the web servers log file?
Hi Thomas,
I am sorry that you have been the victim of a hack attempt. Acunetix does not try to hide the details of the machine performing the scan, thus allowing you to easily identify the IP address from where the scan has been launched.
Unfortunately, we do not have any control on how the tool is being used.
I see you use the google database. Does that mean I need an internet connection to run Acunetix? Our development server is isolated with no access to the “outside world.”
Hi,
There is no need for an internet connection. The GHDB is included in the Acunetix WVS installation.