Top Targets of Blind XSS

Web-based security threats are a popular topic and you can easily find related information, including on cross-site scripting and one of its important flavors, Blind XSS. However, although this information is usually delivered at a high level of detail, the description of the possible targets of such an attack is quite slim and commonly refers […]

Read More →

Acunetix Launch Online Vulnerability Scanner

MALTA, March 6, 2014 — Acunetix today announced the launch of Online Vulnerability Scanner. Combining the benefits of an online solution with Acunetix’ advanced scanning and crawling technology, Acunetix OVS is meant for businesses of any size that want to protect their critical websites, web applications and web servers from potential hacking attacks. The need […]

Read More →

7 Sure-fire Ways to Get Your Website Hacked

Hackers exploit vulnerable systems – and unprepared individuals – to access trade and commercial secrets, damage or gain control of national assets of strategic importance, publicly embarrass top brands, and wreak general havoc with considerable financial, social and economic repercussions. Yet, notwithstanding the barrage of alarming statistics coming our way and the plethora of tools […]

Read More →

The Chronicles of DOM-based XSS

A brief overview of DOM-based XSS DOM-based XSS is a form of cross-site-scripting attack in which an attacker executes an attack vector through the modification of the browser’s Document Object Model (DOM) environment. Unlike stored (persistent) or reflected XSS variants, DOM-based XSS does not involve the attack payload being placed in the server response. As […]

Read More →

Cross-Site Scripting in HTTP Headers

What is XSS in HTTP Headers and How is it Different when Compared to Other XSS Attacks? When looking at various types of XSS attacks, we can easily identify the common pattern – it revolves around injecting malicious code into various areas of the HTML pages to be rendered, so that the code gets executed […]

Read More →

How Acunetix Compares to Other Web Application Scanners

Acunetix is once again confirmed as one of the leaders in web application scanning with a 100% detection accuracy and 0% false positives for Reflected Cross-Site Scripting and SQL Injection vulnerabilities, together with a leading WIVET assessment score. In the 2013/2014 Web Application Vulnerability Scanners Benchmark, information security researcher, analyst, tool author and speaker Shay […]

Read More →