Acunetix v11 (build 11.0.172641450) has been released. This new build includes new vulnerability checks for Apache Struts and nginx. It also improves the detection of Blind SQL Injection and Remote File Inclusion XSS and improves support for large JavaScript files. Below is a full list…
Visit us at it-sa 2017
Acunetix will be exhibiting at it-sa 2017 security expo and congress for the third year running, in partnership with VOQUZ. it-sa is the only IT security exhibition in the German-speaking region and one of the most important worldwide events. The expo is being held at…
DotForce Srl to host GDPR meeting in Rome
On 19th September 2017, DotForce Srl will be hosting GDPR meeting in Rome, aimed at the best IT Security Systems Integrators and Managed Service Providers operating in the Italian market. The Challenge It is widely recognized among privacy professionals, that the European Union’s General Data Protection Regulation (GDPR)…
Acunetix is exhibiting at IP Expo Europe 2017
Come join us at Cyber Security Europe 2017 at the Excel London on the 4th and 5th October. Cyber Security Europe at IP EXPO Europe offers invaluable security insight for both IT managers and security specialists. Hear from the experts how you can build stronger defences…
Acunetix introduce Multi-engine feature
The Acunetix Multi-engine setup is suitable for Enterprise customers who need to scan more than 10 websites or web applications simultaneously. This can be achieved using multiple Acunetix scanning engines by installing one Main Installation and multiple Scanning Engines, all managed from a central console….
New build checks for vulnerabilities in Apache Struts 2, Altassian Confluence, and introduces Multi-Engine feature
Acunetix v11 (build 11.0.172351036) has been released. This new build includes new vulnerability checks in Apache Struts 2, Atlassian Confluence and moment.js. It improves on the database backup file detection, jquery version fingerprint and introduces the new Multi-engine feature. New Features and Vulnerability Tests Detection…
The difference between Vulnerability Assessment and Penetration Testing
Many information security professionals are familiar with the terms ”‘vulnerability assessment” and “penetration testing” (“pentest” for short). Unfortunately, in many cases, these two terms are incorrectly used interchangeably. This post aims to clarify differences between vulnerability assessment and penetration testing, demonstrate that both are integral…
What is Black-box Security Testing?
Black-box security testing refers to a method of software security testing in which the security controls, defences and design of an application are tested from the outside-in, with little or no prior knowledge of the application’s internal workings. Essentially, black-box testing takes an approach similar…
Using Client Certificates in Acunetix
In most TLS handshakes, the client authenticates the server, therefore, the client knows that the server is who it says it is, but the server doesn’t know much about the client. In most cases, this is fine — authentication via credentials is enough in many…