WEB VULNERABILITY SCANNER DOWNLOAD TRIAL FREE EDITION PRODUCT TOUR WEB SITE SECURITY CENTRE

How to avoid Acunetix login problems during scan

Description
After recording an HTML login sequence, it might still be noticed that Acunetix WVS did not crawl the areas of the web application which are after the login page.

Cause
This issue might be caused by a misconfiguration of the login sequence recorder, or the restricted links might not have been selected.

Resolution
After recording an HTML login sequence, Acunetix will automatically enter the recorded credentials to access the secure area of the web application. Recording the login seqence however requires a fundamental setting which otherwise will cause Acunetix to log itself out of the application and lose the session.

In the top toolbar of the login sequence recorder, one can see a button called "Restricted Links".

This button is designed to exclude certain links on the page from being slected during a scan. This particular setting is intended primarily for the logout link, for Acunetix to ignore it and never log out of the application.

Using this setting is very simple. Once the "Restricted Links" button is selected, any links clicked after that will be excluded from the scan. So therefore, after clicking the "Restricted Links" button simply proceed to select the logout link, and a confirmation dialog will ask you if you would like to add it to the restricted links list.

After confirming this action, simply save the recorded login sequence, select it from the drop-down list in the scan wizard, and proceed with the launching the scan.

Download Acunetix WVS - Free Edition
Take a product tour of Acunetix WVS (includes screenshots & system overview) or view the datasheet (PDF)
Learn more about SQL injection, Cross site scripting (XSS), other web attacks and PCI-DSS at the Web Site Security Centre
See what the IT Press has to say about Acunetix WVS in the reviews page, or read our customer testimonials