FORGOT YOUR DETAILS?

Web Application Security Scanner

Solution Overview

Dynamic application security testing (DAST) to effectively identify, understand and remediate web application vulnerabilities.

What is Acunetix

Acunetix  is a web application security scanner, based on dynamic application security testing (DAST) by Invicti. As Invicti acquired Acunetix a couple years back. Today, it is position as an automated web application security scanner, based on on premise standard, premium and Acunetix 360 edition for the various enterprise requirements. It features cutting edge methods and techniques to identify security vulnerabilities to help protect applications from the threat of cyber-attacks.

Acunetix is a Dynamic Analysis tool, or dynamic application security testing tool (DAST), evaluating application security at runtime by attacking the application using techniques analogous to methodologies used by hackers. The result of the tests includes a rich set of data ranging from application inventory to detailed attack traffic which can be reproduced for validation and fix. This data can be examined and processed in the UI or exported in various formats for sharing in other tools.

Acunetix Standard is for single user context, for multiple users to access the dashboard should go for Acunetix Premium edition. For enterprise customers with the needs for secure DevOps and DevSecOps integration, should go for Acunetix 360 Edition.

Web vulnerability and security scanner is use to perform dynamic application security testing (DAST), blackbox testing for web application and portal application to assess for any discovered vulnerability, report them with recommendation given, so web application or portal application developer can fix the vulnerability discovered, before external hacker who exploit the vulnerability, and end up with the web application attacks that with expensive data breaches.

Acunetix Standard

Acunetix Standard is a web vulnerability scanner, which automatically tests your websites for over 7,000 security vulnerabilities.

Detect Over 7,000 Web Vulnerabilities

Acunetix Standard scans your websites, web applications, and APIs for even the most complex vulnerabilities. Acunetix has been developing advanced scanning technology since 2005 and has maintained one of the highest detection ratings in the industry for over 10 years.

  • Acunetix scans for over 7,000 web vulnerabilities, including common attacks like SQL Injections and Cross-site Scripting (XSS) and checks your websites for misconfigurations, unpatched software, weak passwords, exposed databases, and many other vulnerabilities.
  • Acunetix can detect vulnerabilities in websites based on third-party software such as WordPress, Joomla, or Drupal, as well as in websites designed by you or your contractors, even if they are very complex and require login.
  • Unlike web application firewalls, which can be circumvented, Acunetix helps you find the cause of the problem and eliminate it.

Fast, Accurate, and Easy to Use

Acunetix focuses on speed by giving you immediately actionable intel. With industry-leading scan times and unique verification technologies, you can quickly find your vulnerabilities and see which ones are confirmed as real. This saves you from having to spend hours manually checking all your vulnerabilities to confirm they’re not false positives.

  • Acunetix has a clean web interface focused on ease-of-use and a scanning engine available for both Windows and Linux. You can start scanning in 5 clicks.
  • Acunetix uses two unique technologies that help you discover more vulnerabilities: AcuMonitor and AcuSensor. Additionally, AcuSensor helps you find the vulnerability in the source code so you can act fast.
  • Developed by a specialized team, the Acunetix scanning engine is built using C++, for efficiency, making it one of the fastest solutions on the market.

Take Action on Your Web Security

Acunetix greatly improves your web security even if you already have a dedicated security team. Automation features allow you to schedule routine scans and keep your web assets secure.

  • If you don’t have a dedicated security team that protects your websites, Acunetix should be used regularly to check your assets between less frequent external penetration tests performed by third parties
  • If you have a dedicated security team that already performs penetration testing, Acunetix lets them focus on what they do best. The scanner eliminates common vulnerabilities so your experts can then spend their time on critical tasks, like finding business logic errors or zero-day vulnerabilities that no automated tool can discover.
  • If you need to incorporate Acunetix in your development, you can upgrade to Acunetix Premium or Acunetix 360 to use the scanner as part of your SDLC and integrate it with your issue tracker.

 

Acunetix Premium

Acunetix Premium is a web application security solution for managing the security of multiple websites, web applications, and APIs. Integration features allow you to automate your DevOps and issue management infrastructures.

Easy to Use, Fast to Act

Acunetix has a clean web interface focused on ease-of-use so you can start scanning in 5 clicks. Industry-leading scan times and unique verification technologies give you immediately actionable insights so you can act fast.

  • Newly detected vulnerabilities are verified for authenticity, so you know which ones are confirmed real and not false positives. This saves you from having to spend hundreds of hours manually checking and confirming all your vulnerabilities.
  • Acunetix uses two unique technologies that help you discover more vulnerabilities: AcuMonitor and AcuSensor. Additionally, AcuSensor helps you find the vulnerability in the source code so you can act fast.
  • Developed by a specialized team, the Acunetix scanning engine is built using C++, for efficiency, making it one of the fastest solutions on the market.

Unparalleled Detection and Visibility

Acunetix scans for over 7,000 web vulnerabilities, including common attacks like SQL Injections and Cross-site Scripting (XSS) and checks your websites for misconfigurations, unpatched software, weak passwords, exposed databases, and many other vulnerabilities.

  • Dashboard views allow you to quantify the current state of your security, track changes over time, and measure your improvements.
  • Generate executive reports, developer reports, as well as specialized compliance reports: HIPAA, PCI-DSS, ISO/IEC 27001, and more.
  • Acunetix Premium is a multi-user solution with both horizontal and vertical access rights management. You can control access per target and per function using admin, tester, and auditor access levels.

Integrate With Your Current Systems

Acunetix Premium introduces functionality so you can fully integrate it with your SDLC and make web vulnerability scanning part of your development and operational processes.

  • It only takes a few minutes to integrate Acunetix with your environment. You can integrate with systems like Jira, Jenkins, GitHub, GitLab, TFS, Bugzilla, and Mantis.
  • Automatically scan every build initiated by your CI/CD platform and detect vulnerabilities at the earliest stage of the SDLC. This allows quick remediation and prevents web vulnerabilities from making their way to production. You can even convert Selenium scripts to scan protected content.
  • Continuous scanning protects your assets without affecting performance. You can schedule full scans weekly and high-priority scans daily.

Acunetix 360

Acunetix 360 is a best-of-breed enterprise web vulnerability solution designed to be a part of complex environments. It provides multiple integrations as well as options to integrate within custom contexts.

The Best-of-Breed Enterprise Solution

Acunetix is the pioneer in web security, being the first company to create a specialized web vulnerability solution. Pure specialization and unparalleled expertise allow our team to deliver unique solutions that prove themselves in many environments.

  • Acunetix 360 is a DAST tool that uses unique technologies, including IAST, to verify and confirm vulnerabilities. This shows you which vulnerabilities are real and not false-positives. During independent benchmarks, Acunetix achieved one of the lowest false-positive rates on the market.
  • With a focus on integrations and a wide array of issue trackers, Acunetix 360 seamlessly integrates with your CI/CD solutions and team messaging tools.
  • Acunetix understands that out-of-the-box solutions may be difficult to use in complex environments. We work with our customers to make sure Acunetix 360 fits within their landscape. This includes support with implementation and deployment as well as customizing the solution as needed.

Take Control Of Your Web Security Posture

Acunetix 360 is designed to become a part of your complete cybersecurity environment and work with your other solutions. You can deploy Acunetix 360 either on-premises or as a cloud service and use it along with other security tools to get even better protection. Thanks to high performance and extensive integration options, you can improve security without overloading your resources.

Acunetix 360 uses a unique web-based dashboard designed for enterprises and optimized to manage a large number of assets. It includes detailed information for analysts as well as executive views and reports to help you assess your security posture.

User management can be integrated with Active Directory. Vulnerability management can also be integrated with Jira, Jenkins, GitLab, GitHub, TeamCity, Azure DevOps, Slack, and more platforms. Integrations are seamless and can usually be implemented within a couple of minutes. For atypical environments, the Acunetix team can build custom APIs.

Continuous discovery engines use crawler technology pioneered by search engines to find assets that may belong to your enterprise. It gathers information from domain names, domain registration information, SSL certificates, and more, and presents it to you as potential scan targets.

Drive Security Into Your Dev Culture

Acunetix believes in SecDevOps – including security as part of your culture. Acunetix 360 helps you achieve this by making it easy for non-security personnel to consider security in their everyday work. This enables you to improve your overall security stance by not only finding and fixing vulnerabilities but also preventing them in the future.

  • When you include Acunetix 360 in your CI/CD pipelines, your software engineers receive detailed reports if they introduced any security vulnerabilities into code. These reports include remediation suggestions. Since false positives are rare, engineers are not frustrated and can continuously improve their security-related skills.
  • Thanks to the high performance of Acunetix, CI/CD pipeline scans have a minimal impact on the speed of delivery. They can easily be performed together as part of comprehensive test suites, including similar scans based on other products.
  • You can use two-way integration with selected issue trackers to automate security scanning even further. Your issue tracker can initiate a scan after the issue status is changed so that the engineer immediately knows if they introduced a security vulnerability.
Is Your Company Ready For Outsourcing Shared Services?

E-SPIN Value Proposition and Your Preferred Acunetix Partner

E-SPIN and Acunetix Business Partnership go as early as 2007, as E-SPIN adopted the Acunetix web application security scanner product under E-SPIN application security testing (AST) solution portfolio. Over the years, E-SPIN has been active in consulting, supply, project management, training and maintenance of Acunetix as a point solution or together with other E-SPIN represented solutions for end-to-end hassle free solution deployment. Whether complement it with 3rd party product for complete solution, for cover manual, automated DAST, to static SAST and mobile application, infrastructure, manual penetration testing, for red team operations, run with E-SPIN dedicated and performance tune application appliance to modern DevSecOps seamless CI/CD integration and automation, for government, corporate to global security center requirement.

Feel free to contact E-SPIN, our officer should able to help you on end to end solution and product matters.

 

The latest version of Acunetix Web Vulnerability Scanner, v15, was released on October 13, 2022. To make it easier for customers to access all relevant information, we have combined all updates for this edition into one post, with the latest information at the top. The post date will be updated as changes are made, making

Website and Web Application Security trend

Invicti’s Acunetix automated web vulnerability scanner, it is one of the market offering for application security testing (AST). This post is cover v14 edition (release since 17th March 2021). What is new compare with previous edition? Web Asset Discovery, allowing users to discover domains related to their organisation or web assets already configured in Acunetix

For those who in the line of business will notice for Invicti Product Brand Acunetix and Netsparker Logo Change Notice in effect. Invicti, being the new business owner for both Netsparker and Acunetix for a couple of years already. It decided to come in front last year, and now the existing product brand new logo

Retina CS Management Console

Invicti Acunetix Standard vs Premium What the differences? This is one of the common questions. For new and existing customers, note that Acunetix is now being under Invicti for a couple of years. But only recently this two years they let the market know for the change of ownership. You will notice a change of

Acunetix Web Vulnerability Scanner v13 released on 5-Feb-2020. Last build was 13.0.210308088 released on 8-March-2021. It will continue with v14 that was released on 17-March-2021 (for more details for v14, please refer to our dedicated separate post). This is very common to ask and keep an update post, latest on top, and old just behind

Invicti Notice for discontinue Acunetix and Netsparker Consulting License is issue out over the channel. E-SPIN would like to bring you immediate attention for the Invicti notice by Kevin Abela, dated 20-Nov-2020, and his email is self explained so we will not further explain further for the notice content. See the screenshot for the notice

This is archived of the webinar conducted on 2020-Jun-18 10 – 11am for registered participants. For those who missed it, feel from the record of the session below. This is a routine hour long technical overview, highly essential and recommended for existing customers who are  considering making use of gray box testing to enrich or

This is archived of the webinar conducted on 2020-Jun-4 10am – 11am for registered participants. For those who missed it, feel from the record of the session below. This is routine hour long technical overview, highly essential and recommends for existing customers who are upgraded to v13, to know how it is workings and covers

Acunetix price rise notice Date: 20 May, 2020 10pm Dear customers and business partners, Be noted that Acunetix is issue flash price update early notice (in GMT+8 local time 10pm night), price rise from May 30, 2020 onward, this round the reason given is “In light of the current fluctuations in the Foreign Exchange Market,

5-Feb-2020 Acunetix has announced the release of Acunetix Version 13. It is Web Vulnerability Scanner (WVS), for perform Dynamic Application Security Testing (DAST) to fulfil application security testing (AST). The new release comes with an improved user interface and introduces innovations such as the SmartScan engine, malware detection functionality, comprehensive network scanning, proof-of-exploit, incremental scanning,

Web Application Security Assessment (WASA) as a Service Product Overview by E-SPIN

This post regarding Acunetix v12 Web Vulnerability Scanner (WVS) Latest Build and Release. This is very common ask and keep update post, latest on top, and old just behind the latest information. Instead of create multiple post in different date, we combine all in one, easy for reference for the same edition and build history

From DevOps Shift Left Testing to DevSecOps Shift Left Security

Acunetix 360 for Enterprise. This is the post is all you need to know about Acunetix 360, a new product since 2019 March already in the new for coming up. Please read it in the reverse order, if you want to read in historical older information to latest information. 13-Aug-2019 Today announcement general available for

The latest version of Acunetix Web Vulnerability Scanner, v15, was released on October 13, 2022. To make it easier for customers to access all relevant information, we have combined all updates for this edition into one post, with the latest information at the top. The post date will be updated as changes are made, making
Website and Web Application Security trend

Acunetix Web Vulnerability Scanner v14

Invicti’s Acunetix automated web vulnerability scanner, it is one of the market offering for application security testing (AST). This post is cover v14 edition (release since 17th March 2021). What is new compare with previous edition? Web Asset Discovery, allowing users to discover domains related to their organisation or web assets already configured in Acunetix
For those who in the line of business will notice for Invicti Product Brand Acunetix and Netsparker Logo Change Notice in effect. Invicti, being the new business owner for both Netsparker and Acunetix for a couple of years already. It decided to come in front last year, and now the existing product brand new logo
Tagged under: , ,
Retina CS Management Console
Invicti Acunetix Standard vs Premium What the differences? This is one of the common questions. For new and existing customers, note that Acunetix is now being under Invicti for a couple of years. But only recently this two years they let the market know for the change of ownership. You will notice a change of
Tagged under: ,
Acunetix Web Vulnerability Scanner v13 released on 5-Feb-2020. Last build was 13.0.210308088 released on 8-March-2021. It will continue with v14 that was released on 17-March-2021 (for more details for v14, please refer to our dedicated separate post). This is very common to ask and keep an update post, latest on top, and old just behind
Invicti Notice for discontinue Acunetix and Netsparker Consulting License is issue out over the channel. E-SPIN would like to bring you immediate attention for the Invicti notice by Kevin Abela, dated 20-Nov-2020, and his email is self explained so we will not further explain further for the notice content. See the screenshot for the notice
This is archived of the webinar conducted on 2020-Jun-18 10 – 11am for registered participants. For those who missed it, feel from the record of the session below. This is a routine hour long technical overview, highly essential and recommended for existing customers who are  considering making use of gray box testing to enrich or
This is archived of the webinar conducted on 2020-Jun-4 10am – 11am for registered participants. For those who missed it, feel from the record of the session below. This is routine hour long technical overview, highly essential and recommends for existing customers who are upgraded to v13, to know how it is workings and covers
TOP