Highest Crawl and Analysis Rate for HTML5 and JavaScript Security

A fundamental process during any scan is the scanner’s ability to properly crawl an application. Acunetix features DeepScan Technology; an HTML5 crawling and scanning engine that fully replicates user interaction inside of a browser by executing and analyzing JavaScript. DeepScan allows accurate crawling of AJAX-heavy client-side Single Page Applications (SPAs) that leverage technologies such as AngularJS, EmberJS and Google Web Toolkit.

Acunetix achieves top scores in WIVET benchmarks.
Source – SecTools Addict Benchmark

Accurately Crawl and Scan with DeepScan Technology

Acunetix includes Acunetix DeepScan Technology which allows the scanner to robustly test any application, no matter what web technology it’s written in.

At the heart of DeepScan, is a fully automated web browser that can understand and interact with complex web technologies such as AJAX, SOAP/WSDL, SOAP/WCF, REST/WADL, XML, JSON, Google Web Toolkit (GWT) and CRUD operations just like a regular browser would. This allows Acunetix to test web application just as though it is running inside of a user’s browser, allowing the scanner to seamlesly interact with complex controls just as a user would, significantly increasing the scanner’s coverage of the web application.

DeepScan has been further optimized to analyze websites and web applications developed in Ruby on Rails and Java Frameworks including Java Server Faces (JSF), Spring and Struts.

Hassle-free Authenticated Web Application Testing

Testing authenticated areas of your websites and web applications is absolutely crucial to ensure full testing coverage. Acunetix can automatically test authenticated areas by recording a Login Sequence using the Login Sequence Recorder. The Login Sequence Recorder makes it quick and easy to record a series of actions the scanner can re-play to authenticate to a page. The Login Sequence Recorder can also record a series of Restrictions; making it trivial to granularly limit the scope of a scan in a few clicks.

Acunetix Login Sequence Recorder supports a large number of authentication mechanisms including

  • Multi-step/Custom Authentication Schemes
  • Single Sign-On Authentication
  • Multi-factor Authentication
Acunetix Login Sequence Recorder
Custom 404 and Rewrite Rules

Malware URL Detection

Acunetix includes a malware detection service that detects URLs linking to external sites known to host malware or that are known to be used for phishing attacks.

Such links may indicate that the site being scanned has either been compromised, or that somehow an attacker has managed to inject URLs to the malicious site. It may also indicate that a legitimate site that your site links to has been compromised and is hosting malware.

Acunetix is available on premise and online. Choose your trial.