acunetix_logo_blog_post_100x74

Featured Article

Acunetix WVS v9.5 build 20140902 detects Hibernate Query Injection, Format Strings and more

September 02, 2014 - 11:30am

Acunetix Web Vulnerability Scanner version 9.5 build 20140902 has been updated to include new vulnerability checks, including detection of Hibernate Query Injection, format strings vulnerabilities, MySQL username disclosure and others, including some, in well-known web applications. This new build also ... [+]


Subdomain Scanner

Subdomain Scanner

The Subdomain Scanner in Acunetix WVS scans a top-level domain to discover subdomains configured in its hierarchy, by using the target domain’s DNS server, or any other DNS server specified by the user.  While scanning, this tool will also automatically … [+]

Target Finder tool

Target Finder tool

The Target Finder tool in Acunetix WVS is a port scanner which can be used to discover running web servers on a given IP or within a specified range of IP’s.  The list of ports on which the web servers … [+]

Getting developers on board with security - once and for all

Getting developers on board with security – once and for all

Making Web application security work is more than simply telling developers they need to write better code. We can scream “Write better code!” and “Integrate security into the application lifecycle!” at developers until end of time but that’s not going … [+]

Malware Found When Visiting On-line Porn Sites

Malware Found When Visiting On-line Porn Sites

What can one say about on-line porn sites and security that hasn’t already been said?  Most of us know that if we decide to spend time surfing around in the “less desirable” areas of the internet then we are opening … [+]

VIDEO: Discovered XSS on Facebook can lead to account hijack

VIDEO: Discovered XSS on Facebook can lead to account hijack

Facebook rates as the second most popular website on the internet with 400 million active users. When such a website has common web application security flaws, they are going to be abused for one’s gain. When we came across an … [+]

Web security oversights: Don't overlook the “small” stuff

Web security oversights: Don't overlook the “small” stuff

I was reviewing the most recent SANS @RISK Consensus Security Vulnerability Alert and it reminded me of how easy it is to get caught up in the big stuff and overlook the seemingly innocuous when performing Web security assessments. The … [+]

Cloud Computing Benefits

Mention “the cloud” and many who are not heavily involved in the preparation and creation of internet-based resources will turn their heads skyward.  To be fair, cloud computing can be a difficult concept to grasp even for those who work … [+]

Large Companies Don`t Protect From Malware

Everywhere we turn in the recent weeks we are reading articles, blog posts and social media updates about frustrations consumers are having with Adobe products.  This comes in light of the Kaspersky Lab report titled “Information Security Threats In the … [+]

Dangerous XSS vulnerability found on YouTube – the vulnerability explained

On the 4th of July 2010 YouTube users began complaining that their videos had been hijacked, the comments section of their videos seemed to be most severely affected, many complained that old comments vanished and new comments could not be added. Others reported that offensive messages were popping up on their screen or scrolling horizontally in large fonts and striking colors. Some users also seemed to suggest that there were experiencing page redirects, often to sites promoting pornographic content. … [+]

Acunetix WVS takes first place in black box web vulnerability scanners comparison

Acunetix WVS takes first place in black box web vulnerability scanners comparison

Acunetix Web Vulnerability Scanner placed first in a paper released by Adam Doup´e, Marco Cova, and Giovanni Vigna from the University of California, Santa Barbara.  In the paper “Why Johnny Can’t Pentest: An Analysis of Black-box Web Vulnerability Scanners”, the … [+]