Acunetix WVS V7 RC1 is available

The Release Candidate build for Acunetix Web Vulnerability Scanner Version 7 (20100825) is now available for download.  All of the bugs reported during the Beta were fixed.  We also added some improvements in this RC build and we are well prepared for the official release, which is around the corner.  So stay tuned!

Read More →

Acunetix WVS Version 7 BETA 2 is available

An updated build of Acunetix WVS Version 7 BETA has been released.  This build includes the following number of improvements: Improved Cross-Site scripting (XSS) vulnerabilities detection scripts Improved blind SQLl injection vulnerability checks to reduce false positives Added a good number of new Cold Fusion security checks (including the latest directory traversal) Added a number […]

Read More →

Creating custom vulnerability checks for Acunetix WVS

Vulnerability checks in Acunetix Web Vulnerability Scanner consists of two files; *.script – The actual vulnerability check written in JavaScript.  Such scripts are stored in the <C:ProgramDataAcunetix WVS 8DataScripts> directory. *.xml – This file contains all the documentation related to the vulnerability description, such as vulnerability details, remediation, severity level and other details.  These XML […]

Read More →

Acunetix WVS Version 7 BETA is available!

Note: This is no longer available. Click here to download a 14-day free trial of the latest version of Acunetix. A new version of Acunetix Web Vulnerability Scanner is available in beta, and what a version! It has been one long year of development, testing and late nights at the office, though it was all […]

Read More →

FAQ: Is it possible to crawl a site manually?

It is possible to manually crawl your website with Acunetix WVS using a web browser. Using the resultant — and manually crawled — links, it is then possible to build a website structure that will be targeted during the security scan.  This is useful for scanning specific web applications that cannot be automatically crawled due […]

Read More →

HTTP Editor Tool

The HTTP Editor tool allows you to create, analyze and edit client HTTP requests and server responses. This allows you to further fine tune attacks and check if vulnerabilities were solved. You can start the HTTP Editor from the ‘Tools’ node within the Tools Explorer window pane. The Top pane in the HTTP editor displays […]

Read More →

Blind SQL Injector Tool

Ideal for penetration testers, the Blind SQL injector is an automated database data extraction tool. By importing SQL injections discovered when scanning a website, you can see what a serious impact an SQL injection can have on the website. You will also be able to enumerate databases, tables, dump data and also read specific files […]

Read More →

HTTP Fuzzer Tool

With the HTTP Fuzzer tool in Acunetix WVS you can automatically send a large number / volume of HTTP Requests including invalid, unexpected and random data to a website, to test its input validation capabilities.  You would also be testing the web application’s also handling of unexpected data. Creating a rule to automatically test a […]

Read More →