Acunetix web vulnerability scanner version 5 get released

Acunetix Web Vulnerability Scanner (WVS) is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive web site and web application penetration testing.

New major changes for this new 5.x branch.

New Tools / Applications:

  • Subdomain Scanner
  • Web Services Scanner
  • Web Services Editor
  • Reporter Application

General Improvements:

  • Ms Windows Vista Support
  • Visual Interface Improvements with new graphics and buttons
  • Source View in various parts of the product
  • Password protection for all Acunetix Tools and applications
  • Upgrading from Previous Versions/Builds keeps all Settings and Configurations

Reporting Improvements:

  • New Reporter Application
  • Detailed Scans View from the Database
  • Standard Report Templates: Developer, Executive, Vulnerability
  • Scan Comparison Templates
  • Statistical Templates: Yearly, Monthly, etc..
  • Compliance Reports Templates: OWASP, PCI, Sarbanes-Oxley, HIPAA, etc..

Crawler Improvements:

  • Manual Choice of Files from the Site Structure
  • Directory Recursion (loop) Detection
  • URL Rewrite Detection and Warning to User
  • Improved Filtering (replacing the old search functionality)

Scanner Improvements:

  • New Scanning Mode Option: Quick, Heuristic and Full
    Multi-Step Scanning
  • Stored XSS Tests
  • Header Manipulation
  • Improved Blind SQL Injection Tests
  • Improved Mod_Rewrite Support
  • Improved Filtering (replacing the old search functionality)
  • Grouping of Test Variants
  • Sitemaps Support
  • Added New Vulnerability Tests

Scheduler Improvements:

  • Support for Web Services Scheduled Scans
  • New options for Source and Output of Scans
  • Mail Notifications

Command Line Improvements:

  • New options added to support more functions like the full application
  • Web Services Scans
  • Mail Notifications

Database Improvements:

  • Significantly Reduced DB Size by 90% while keeping the same details and more!
  • New Database Structure (conversion tool available to upgrade from v4 structure)

Post scriptum

Compliance Mandates

  • Application Scanner :

    PCI/DSS 6.3, SOX A12.4, GLBA 16 CFR 314.4(b) and (2), HIPAA 164.308(a)(1)(i), FISMA RA-5, SA-11, SI-2, ISO 27001/27002 12.6, 15.2.2

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Related Articles

Acunetix
Application Scanner
Vulnerability Scanner