By Raheel Ahmad Although revealing the secret is always an appealing topic...
Manipulation of JSON/XML Input, Google Web ToolkitTM support and new .NET 4.5 AcuSensor are just some of the new features available in the latest version of Acunetix Vulnerability Scanner.
London, May 8, 2014 – Acunetix have just announced the launch of a new version of Acunetix Web Vulnerability Scanner. Acunetix Vulnerability Scanner version 9.5 includes updates allowing web developers and security managers to scan web applications implemented in Google Web Toolkit (GWT) and automatically test JSON and XML data objects for vulnerabilities. In addition, vulnerabilities are now also classified using CVE, CWE and CVSS, and AcuSensor has been updated for .NET 4.5 web applications.
Detection of SQLi, XSS and other vulnerabilities in Google Web Toolkit web applications
Acunetix now fully supports web applications implemented in Google Web Toolkit, exposing all types of vulnerabilities in such web applications, including SQL Injection and Cross-Site Scripting.
Detection of vulnerabilities in JSON and XML data and HTTP HOST Headers
Hackers are always trying to find new avenues to exploit existing vulnerabilities. Because of this, Acunetix has been updated to start running all its vulnerability assessments on JSON and XML data. In addition, the HTTP POST Header will also be manipulated during a scan, in order to expose vulnerabilities which might be made possible through this hidden header field.
Industry standard classification of vulnerabilities for easier prioritization
The alerts for vulnerabilities detected in a web application have been updated to include the classification provided by CVE, CWE and CVSS. Users can now better assess the severity and risk of a vulnerability, making it easier to prioritize remediation efforts.
Support for .NET 4.5 Framework with AcuSensor Technology
Acunetix’s proprietary AcuSensor Technology has been updated to support applications implemented in .NET version 4.5.
Traditional black box scanners do not know how an applications reacts, and source code analyzers do not understand how the application will behave while under attack. AcuSensor Technology combines both techniques to provide Integrated Application Security Testing (IAST), increasing detection of, and information on vulnerabilities, while decreasing false positives.
Test the Latest Version of Acunetix Vulnerability Scanner
The new features are being made available in both the on-premise Acunetix Web Vulnerability Scanner, and the Acunetix Online Vulnerability Scanner service. A free 14-day trial is available for anyone who wants to test the latest capabilities of Acunetix Vulnerability Scanner.
Acunetix is the market leader in web application security technology, founded to combat the alarming rise in web attacks. Its products and technologies are the result of several years of work by a team of highly experienced security developers. Acunetix customers include the U.S. Army, KPMG, Adidas and Fujitsu. More information can be found at www.acunetix.com.
Joshua G Giordimaina
(+44) (0) 330 202 0192