Acunetix web vulnerability scanner is a tool designed to discover security holes in your web applications that an attacker would likely abuse to gain illicit access to your systems and data. It looks for multiple vulnerabilities including SQL injection, cross site scripting, and weak passwords.
The application can be used to perform scanning for web and application vulnerabilities and to perform penetration testing against the identified issues. Mitigation suggestions are then provided for each weakness and can be used to increase the security of the web server or application being tested.
The application can be used to perform scanning for web and application vulnerabilities and to perform penetration testing against the identified issues. Mitigation suggestions are then provided for each weakness and can be used to increase the security of the web server or application being tested.
Disclaimer – Our tutorials are designed to aid aspiring pen testers/security enthusiasts in learning new skills, we only recommend that you test this tutorial on a system that belongs to YOU. We do not accept responsibility for anyone who thinks it’s a good idea to try to use this to attempt to hack systems that do not belong to you
in this tutorial i will show you how to scan your website and Analyzing the Scan Results .
there are two ways to scan your website
first method : enter your website url chose profil as default and click start ,this can be used for fast scans .
there are two ways to scan your website
first method : enter your website url chose profil as default and click start ,this can be used for fast scans .
second method is to use scan wizard which allow great of granularity in the scanning options , i will use scan wizard to explain some of this options .
first enter url of the website you wich to scan , in this case i will scan a test site hosted by acunetix .
http://testphp.vulnweb.com/
click next when you are ready
its time to select scanning profil
scanning profil are simple template which include or exclude specific vulnerability test , however in this demonstration i will select default profil which include all vulnerabilitys checks .
click next to proceed
the wizard will now make an analysis , to identify webserver operating system and web technology used by the site
click next and finish to start the scan
acunetix will proceed to crawling the site ,identifying all the pages forms and inputs and vulnerabilities from high toinformational
acunetix also provide ideational information on the vulnerability and some advices to fix it .
0 Comment:
Đăng nhận xét
Thank you for your comments!