Black-box security testing refers to a method of software security testing in which the security controls, defences and design of an application are tested from the outside-in, with little or no prior knowledge of the application’s internal workings. Essentially, black-box testing takes an approach similar…
Using Client Certificates in Acunetix
In most TLS handshakes, the client authenticates the server, therefore, the client knows that the server is who it says it is, but the server doesn’t know much about the client. In most cases, this is fine — authentication via credentials is enough in many…
Acunetix featured at DotForce GDPR Meeting Milan, Italy
On 13th June 2017, Acunetix Distributors for Italy – DotForce Srl, organised a partner event at the Chamber of Commerce (Camera di Commercio) in Milan, overlooking the magnificent Duomo. Over sixty of Italy’s best IT Security System Integrators and Managed Service Providers attended the DotForce…
Issue Tracker Integration with Acunetix
An Issue Tracker such as Atlassian JIRA, GitHub and Microsoft TFS is a powerful and essential tool in the Software Development Life Cycle (SDLC) of almost any software project. It helps development teams streamline collaboration and manage their work without getting lost in an endless…
Eastern Institute of Technology, NZ publishes Case Study on Web Vulnerability Scanners
Ms. Angel Rajan and Dr. Emre Erturk from the Eastern Institute of Technology, Hawke’s Bay, New Zealand, recently published a paper entitled “Web Vulnerability Scanners: Case Study”. The case study analyses the benefits of using of an automated web vulnerability scanning solution like Acunetix, to…
Help Net Security reviews Acunetix v11
Help Net Security, an independent site, focused on information security, reviewed Acunetix v.11. This was not the first time the team behind Help Net Security analysed Acunetix, the first time being back in 2009. Since the review of v.6.5, the product has come a…
All work and no play makes Acunetix a dull team
So off we went to enjoy the rural side of Maltese life! Donning our Acunetix Malta Legend Vets Rugby Shirts, we headed off to the SW Coast of the island to a picturesque hidden little bay named Ghar Lapsi. Stunning rock formations and crystal clear…
Configuring HTTP Proxy Settings in Acunetix
If the target website or web application you intend to scan is only reachable via an HTTP proxy, you will need to configure Acunetix On-Premises to make use of that HTTP proxy server before running the scan. You can set different proxy settings per Target…
Pentest Diaries – Hunting Bugs in HTTP Headers
Some time ago, I joined a bug bounty program of a household name brand, who shall remain anonymous throughout this article. This write-up documents a journey of finding and exploiting SQL injection in some unexpected places. To get started, I randomly chose one of the…