A lot of developers are using version control systems such as SVN (Apache Subversion) and GIT in order to track changes in their source code. These types of server tools are essential for the organizations which have multi-developer projects. Most of these version control systems create internal hidden directories, which typically contain extensive information about […]
Note: This article refers to an older version of Acunetix. Click here to download the latest version. When you visit a website your browser sends an HTTP header called “User-Agent” to the web server. This header indicates which web browser you are using, its version number and details about your operating system and version.
A web application security breach means different things to different people. To some it could mean having attackers exploit a vulnerability that allows them to deface their website. To some it could mean cracking web passwords – or capturing them over an unsecured wireless network – and using the account credentials for ill-gotten gains. While […]
Since 1984, the word “virus” was used to describe what we now call malware. Malware is short for malicious software and collectively refers to things such as viruses, Trojan horses, spyware and rootkits. Recently we’re seeing new terms for certain types of malware such as Advanced Persistent Threats and advanced malware. The essence of malware […]
When running several large scans (using the Scheduler, for example), you may encounter a situation where you run out of hard disk space for the logs generated by the scans. It would be useful to be able to redirect the logs folder to some other location to take advantage, for example, of Network Attached Storage […]
After using Acunetix WVS on a website, the hosting provider may block your IP address so you are not capable of accessing your own website anymore. After requesting the hosting provider, the site becomes available again. How can you configure or use Acunetix WVS in a way that reduces the possibility of an ISP blocking the IP […]
The Acunetix Team is pleased to announce an updated build of the Web Vulnerability Scanner Version 8 (WVS 8). This new built includes new security checks for more vulnerabilities, bug fixes as well as a series of new and improved features.
Note: This article refers to an older version of Acunetix. Click here to download the latest version. Nowadays, more and more people are using URL rewrite techniques to increase their “friendliness” to both users and search engines. With URL rewrites, a URL like http://www.site.com/cms/product.php?action=buy&id=1 is typically rewritten to something like: http://www.site.com/buy/1.
As I’ve written about scoping your Web security tests in the past, it’s not something to be taken lightly. Interestingly, there’s one aspect of Web security testing where I’m still seeing a big disconnect. The issue is how many critical Web systems are being dismissed (“That one’s going away soon.” and overlooked (“Oh, yeah, I […]
The Verizon 2011 Data Breach Investigations Report states that the Web is the second most common infection vector for malware. The recent lilupophilupop.com SQL injection attacks infecting over a million web pages is a good example of what can happen. According to Google’s Four Years of Web Malware report, a lot of this malware is […]