The term Google hacking refers to an attack that uses a search engine like Google to find vulnerable web servers and websites. Google hacking is based on inventing specific search queries, often using advanced search operators (such as intitle, inurl, intext, filetype, and more), to locate badly configured…
How I Found an XSS in Google using Acunetix
I’m an independent security researcher and make my living mostly by cashing in on bounties. I use a lot of manual tools but I also find Acunetix very useful. Recently, I found out that Acunetix can even help me find a vulnerability in Google. Here…
What Is Cross-Frame Scripting (XFS)
Cross-Frame Scripting is a web attack technique that exploits specific browser bugs to eavesdrop on the user through JavaScript. This type of attack requires social engineering and completely depends on the browser selected by the user, therefore it is perceived as a minor web application…
Acunetix Grows the Number of Partnerships Across the Globe
One of our key goals at Acunetix is spreading web security awareness. We would be unable to do so without the support of our valuable partners. We currently work with more than 1000 companies all over the world. Our partners help us provide businesses that…
New update includes a new scanning algorithm, support for Spring Framework and new vulnerability checks for Ruby on Rails, Jira, Apache Tapestry, Golang, vBulletin, and others
Acunetix version 12 (build 12.0.191121158) has been released. This new build introduces a new scanning algorithm that removes redundant scanning tasks. In addition, the scanning tasks are prioritized in a way that gives dissimilar locations higher scanning priority, improving the time to detect dissimilar vulnerabilities….
Mobile App Security – Don’t Forget the APIs!
Every year more and more consumers use mobile devices to access online services. This means that every service business, and not only in the case of B2C but also B2B services, must cater to the needs of mobile device owners. However, mobile device users prefer…
What Is Privilege Escalation and How It Relates to Web Security
Privilege escalation, in simple words, means getting privileges to access something that should not be accessible. Attackers use various privilege escalation techniques to access unauthorized resources. For web application security, privilege escalation is an important concern because web intrusions are usually only the first stage…
Step-By-Step Configuration with Jira
Jira is a popular issue tracker platform. Vulnerability management teams may use it to manage tasks together with other departments. You can easily integrate Acunetix with Jira (both the on-premise and online Jira versions). Note: Before you proceed any further, ensure that you install the…
7 Web Application Security Best Practices
To maintain the best possible security stance and protect your sensitive data against unauthorized access, you cannot just buy security products. Here is a list of seven key elements that we believe should be considered in your web app security strategy. 1. Include Everyone in…
How Does IoT Security Relate to Web Security
Smart devices, which are part of the IoT ecosystem (Internet of Things), are not only increasingly prevalent at homes. They also find their way into businesses of all sizes including enterprises. Unfortunately, the cybersecurity of IoT devices leaves a lot to be desired and is…