Acunetix release Acunetix Web Vulnerability Scanner (WVS) version 11 on 17th Nov 2016 globally.
In summary, the new version includes integrated vulnerability management features to extend the enterprise’s ability to manage, prioritise and control vulnerability threats comprehensively. Version 11 also includes a re-engineered web-based user interface for greater ease-of-use and manageability, providing access to multiple users.
Existing user who use Enterprise 2X, Consultant 5X and Consultant 10X (from version 10.5) will automatically migrated over to as Standard X2, Pro X5 and Enterprise X10. Be note the “Enterprise X10” is very new and powerful edition so far, target for the large scale enterprise environment, with multiple user and multiple scan engines.
From the past, divide for internal scan with Enterprise edition or go higher with Consultant 5X and 10X (if multiple instance is required), and where Consultant require to buy Consultant 5X (since Enterprise 2X is for internal use edition only).
But in the version 11 licensing scheme, it no more like this. Everyone include consultant can purchase standard edition, if you know the feature set required is fit your usage scenario. Off course, the more advance edition come with compliance and various more advanced use features set.
You may use the following feature matrix to quickly understand, what feature you required.
Acunetix (on-premises) Licensing
Acunetix (on-premises) is available as a Standard Edition 2 concurrent scans, a Pro Edition 5 concurrent scans and an Enterprise Edition 10 Concurrent Scans.
|Architecture and Scale|
|Unlimited URL Scanning||✓||✓||✓|
|User Roles and Privileges||✓|
|Number of Users||1||1||3 – Unlimited|
|Multiple Scan Engines||✓|
|Max Number of Scan Engines||1||1||1 – 50|
|Total Concurrent Scans per License||2||5||10 – 100|
|Acunetix Vulnerability Assessment Engine|
|Scanning for 3000+ web application vulnerabilities||✓||✓||✓|
|Acunetix DeepScan Crawler||✓||✓||✓|
|Acunetix AcuSensor (Gray-box Vulnerability Testing)||✓||✓||✓|
|Acunetix AcuMonitor (Out-of-band Vulnerability Testing)||✓||✓||✓|
|Acunetix Login Sequence Recorder||✓||✓||✓|
|Malware URL Detection||✓||✓||✓|
|Manual Pen-testing Tool Suite||✓||✓||✓|
|Scanning of Online Web Application Assets||✓||✓||✓|
|Scanning of Internal Web Application assets||✓||✓||✓|
|Key Reports and Vulnerability Severity Classification|
|Key Reports (Affected Items, Quick, Developer, Executive)||✓||✓||✓|
|OWASP TOP 10 Report||✓||✓||✓|
|CVSS (Common Vulnerability Scoring System) for Severity||✓||✓||✓|
|Centralized Management and Extensibility|
|Assign Target Business Criticality||✓||✓|
|Prioritize by Business Criticality||✓||✓|
|WAF Virtual Patching**||✓||✓|
|Issue Tracking Systems Integration***||✓|
|Assign Target Management to Users||✓|
Perpetual or Subscription Licenses
Acunetix on-premises is sold as a 1 Year Subscription license or as a Perpetual license. The Standard, Pro and Enterprise Editions are available in both forms. Generally, the Perpetual license is more cost-effective over a number of years (lower Total Cost of Ownership).
Support and version upgrades are included for free for the full duration of the 1 year license, however it is only included for the first year of the Perpetual license. To extend this period of support and free version upgrades to one or more years, a maintenance agreement should be purchased along with the perpetual license.
Standard Edition x2 Concurrent Scans (Unlimited Sites/Servers)
The Standard Edition is the entry level presentation of Acunetix and may be used to scan an unlimited number of websites, limited to 2 concurrent scans from the same single fixed install computer. The typical Standard Edition customer is a single workstation user responsible for security posture and compliance, who wishes to undertake standalone pen-testing with the support of some excellent developer reports and with the remediation tips Acunetix is Now renowned for.
As of the launch of v11, the Standard Edition replaces and continues from the previously named Enterprise product. The term Enterprise is now reserved for larger multi-user and, optionally, multi-engine licenses at the other end of the scale. Holders of Enterprise (x2 Concurrent Scan) Edition v10.5 licenses or earlier, will upgrade automatically to the Standard Edition in v11 against a valid maintenance or subscription agreement and the product part numbers remain the same.
Pro Edition x5 Concurrent Scans
The Pro Edition x5 Concurrent Scan license is ideal for the power user requiring more detailed compliance reports and integration with the software production train. The Pro Edition supports 5 concurrent scans from the same single fixed install computer.
The Pro Edition customer could be an outsourced or insourced security professional leading more advanced projects such as setting up a professional application security vulnerability management program within an organization. This user would be responsible for security posture and compliance. The Pro Edition has access to many Enterprise features, such as: the ability to group and classify asset targets for better vulnerability remediation prioritization; integration with Software Development Life Cycle (SDLC) project management or issue tracking systems; comprehensive compliance reports;integration with top Web Application Firewalls (WAFs); informative trend graphs for use by top management.
As of the launch of v11, the Pro Edition replaces and continues from the previously named Consultant 5 Concurrent Scan product. Holders of Consultant (x5 Concurrent Scan) Edition v10.5 licenses or earlier, will upgrade automatically to the Pro Edition in v11 against a valid maintenance or subscription agreement and the product part numbers remain the same.
Enterprise Edition x10 Concurrent Scans
The Enterprise Edition x10 Concurrent Scans adds multi-user, collaborative team capability and can also control multiple Acunetix scan engines.
As a threats and vulnerability management program develops within an organization engaged heavily in application development, the customer can scale up and roll out to multiple users including top management, governance, risk and compliance (GRC) personnel. The Enterprise Edition customer has full role-based multi-user team support and the ability to deploy multiple scan engines managed by the central system while with the entry-level Enterprise 3, 5, 10 user licenses the single fixed install comprises both the central system and the scan engine installation. The Enterprise Edition can scale from 3 to unlimited users and up to 50 Acunetix scan engines.
Multiple Concurrent Scan Licenses, and Multiple Concurrent Standalone User-installs or Extra Scan Engines)
As described above, Acunetix can be used to run multiple concurrent scans of multiple websites from the same workstation. The Standard Edition can run 2 concurrent scans, the Pro Edition can run up to 5 concurrent scans, while the Enterprise Edition of the software can run 10 scans concurrently, or more, either at the central node (for 10 concurrent scans) or over multiple scan engines depending on the licensing options selected, the deployment configuration and architectural considerations. Please contact [email protected] for customized project quotation and requirement.
Acunetix have included Edition Upgrade paths, allowing upgrades from Standard to Pro, Pro to Enterprise and beyond. It is possible for Subscription license customers to upgrade their licenses to larger Editions and add users.
Special remark for the API support
For customer looking for perform work in API way (in particular for developer customer), the only version support it is Acunetix Enterprise X10 Edition. But be special note it is provide base on case by case basis, it is advise to discuss your case in advance, prior for the purchase, to make sure you are allow to use the API base on your project. Else, you will end up buying the Acunetix Enterprise X10 but do not allow you to use Acunetix API.
For those who prefer audio visual (video presentation), please see the summary and highlight clip capture during event.
Use your current Acunetix License Key to activate the product.
Implementation of new features in Acunetix Online is scheduled for the end of November.
The New Acunetix Web Vulnerability Scanner (WVS) version 11 product manual please download from the link below. It cover most of the info for existing users to get start on version 11.
The above diagram make it visual understood and know about existing (for previous edition user) and new version mapping, as well as provide the cloud / online scanner in compare.For customer want to visual step by step guide on the installation, please refer the link document below: